Cyber Intelligence & Communities

The growing complexity of information systems, the multiplication of attacks and their increasing sophistication are making information systems increasingly vulnerable. The aim of the project is to provide a set of cyber threat intelligence services for the French market, aimed at cybersecurity teams, namely:

1. Access to a national Threat Intelligence database (the memory);
2. An Analysis Center acting as an enrichment service;
3. Threat weather forecasts, explaining trends and predicting future attacks;
4. An automatic system for proposing the use of indicators.

KOR Labs will provide the platform with various data related to DNS abuse: domain registration data, DNS records, host information, website data, ranking and popularity data. It will participate in the design of data analysis algorithms for the Analysis Center. It will also develop reputation algorithms that will evaluate abuse rates among the various types of DNS intermediaries (TLD registries, registrars, and hosting providers) to establish their ranking.