Sumo Logic is proud to partner with Recorded Future to provide integration between these two platforms.

This integration allows Recorded Future's comprehensive threat intelligence to enhance Sumo Logic queries.

The result? On the fly ability to lookup/enhance events with threat intelligence to better respond to events.

Let's get started! Integrating Recorded Future feeds with Sumo Logic products, please follow the steps:

• Recorded Future Integration with Sumo Logic Integration Steps

in the order listed.

The following content is provided so you can monitor your Recorded Future feed, as well as base new content on these examples.

• Support for AWS Lambda, EC2, and installed collector support for data collection ( both Windows and Linux )

• Support for getting Recorded Future Demo Events, Threat Intelligence and curated Fusion Files

• Support for creating Sumo Logic lookup files as well as Sumo Logic index for correlation

• Included Sumo Logic content; dashboards showing the health of your threat intelligence feed

• Support for actions and response using Sumo Logic webhooks

Copyright 2020 Wayne Kirk Schmidt https://www.linkedin.com/in/waynekirkschmidt

Licensed under the Apache 2.0 License (the "License");

You may not use this file except in compliance with the License. You may obtain a copy of the License at

license-name   APACHE 2.0
license-url    http://www.apache.org/licenses/LICENSE-2.0

Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.

Feel free to e-mail me with issues to:

• [email protected]

• [email protected]

I will provide "best effort" fixes and extend the scripts.