- Solutions
Govern and secure data or device transfer for your segmented and air-gapped network environments.
Secure local or remote access to your cloud applications, internal networks and resources.
Prevent malicious file upload that can compromise your networks.
Analyze suspicious files or devices with our platform on-prem or in the cloud.
The majority of malware continues to be initiated via email. OPSWAT Protects Your Organization Against Advanced Email Attacks.
Prevent risky devices including BYOD and IoT from accessing your networks with full endpoint visibility.
Protect your on-prem or cloud storage services and maintain regulatory compliance.
Join hundreds of security vendors benefiting from OPSWAT’s industry-leading device and data security technologies.
Trust no file. Trust no device.AcademyUse our on-demand courses to get trained and certified on cyber security concepts and best practices, critical infrastructure protection, and OPSWAT products and solution. Both introductory and advanced courses are available.
The OPSWAT Academy consists of subject matter courses designed for the learner to build up their expertise using a phased approach.
For current OPSWAT customers, the Academy also includes advanced training courses for greater ease-of-use efficiency when operating and maintaining all OPSWAT products and services.
Available Certifications
Each discipline certification is awarded for one year upon passing the exams on that discipline's courses in OPSWAT Academy.
In order to maintain active OCIPA Certification, make sure you stay current on all OPSWAT's individual discipline certifications.
Trust no file. Trust no device.PartnersA Service that verified compatibility and effectiveness of endpoint next-gen antimalware, antimalware and disk encryption products.
Enhance threat prevention by integrating OPSWAT technologies. OPSWAT partners with technology leaders offering best-of-breed solutions with the goal of building an ecosystem dedicated to data security and compliance using integrated solutions.
Categories
Our partner program is aimed at providing the most effective and innovative products and tools to help accelerate your business.
Trust no file. Trust no device.ServicesWork with our subject matter experts for cyber security consultation, implementation and integration guidance, ongoing maintenance and improvement, or complete managed services.
The OPSWAT’s support team can provide you 24x7x365 coverage via phone, chat, or cases that you log with you.
Take advantage of our instructor led training (ILT) courses or onsite “walk the floor” coaching to augment and expand on the training received through OPSWAT Academy courses.
Use our on-demand courses to get trained and certified on cyber security concepts and best practices, critical infrastructure protection, and OPSWAT products and solution. Both introductory and advanced courses are available.
We believe that our customers are great resource that provides us with much understanding and drives us forward. Join the conversation and learn from others at our Community site.
Trust no file. Trust no device.CompanyOPSWAT provides Critical Infrastructure Protection solutions to protect against cyberattacks.
Over 1,500 customers worldwide trust OPSWAT to protect their digital assets and keep their data flows secure.
OPSWAT teams are filled with smart, curious and innovative people who are passionate about keeping the world safer. Join us, unleash your talent and help protect worldwide Critical Infrastructure.
Learn how OPSWAT cybersecurity solutions can protect your organization against cyberattacks by visiting with us at conferences and attending webinars
OPSWAT news, media coverage, and brand resources.
Resources to learn about critical infrastructure protection and OPSWAT products.
Trust no file. Trust no device.Trust no file.
Trust no device.
Threat Intelligence Feed
OPSWAT's threat intelligence feed enables organizations to leverage real-time malware data collected by the MetaDefender Cloud platform from all around the world. Organizations integrate our up-to-date threat intelligence into their existing tools or solutions to protect their infrastructure against threats.
Why Threat Intelligence?
Threat Intelligence starts with the collection of information. Since 2012, OPSWAT gathers malware data from a wide range of sources: free users, customers, our OEM community, and other cybersecurity vendors. The result is a massive online database of malware hashes and malware-related information that can be cross-referenced.
Threat Intelligence Benefits
- Prevention & Mitigation - Threat Intelligence provides info about the newest threats, in order to identify, prevent and mitigate them
- UpToDate - The feed is continuously updated to make sure your organization is protected from the latest threats
- Fortified Infrastructure - “Security products leverage threat intelligence capabilities to harden security measures
How Do SecOps Benefit from the Threat Intelligence Feed
- Adding context and priority to global threats in order to see beyond the typical attack lifecycle
- Enhance security and risk management infrastructure, by building proactive defenses, prioritizing alerts, and improving incident response
- Qualify threats disrupting business, based on file category, malware family and type
Getting Started
The Threat Intelligence Feed contains the latest detected malware hash signatures, including MD5, SHA1, and SHA256. Our feed is updated instantly with malware to provide actionable threat intelligence. Data is delivered in JSON format using REST API calls and is configurable using query parameters:
Integration example – consume our threat intelligence feed programmatically:
curl -X GET \
'https://api.metadefender.com/v4/feed/infected/latest?page=1' \
-H 'apikey: ${APIKEY}'
var request = require("request");
var options = { method: 'GET',
url: 'https://api.metadefender.com/v4/feed/infected/latest',
qs: { page: '1'},
headers: {
apikey: process.env.APIKEY
}
};
request(options, function (error, response, body) {
console.log(body);
});
import requests
import os
url = "https://api.metadefender.com/v4/feed/infected/latest"
querystring = {"page":"1"}
headers = {'apikey': os.environ["APIKEY"]}
response = requests.request("GET", url, headers=headers, params=querystring)
print(response.text)
require 'uri'
require 'net/http'
url = URI("https://api.metadefender.com/v4/feed/infected/latest?page=1")
http = Net::HTTP.new(url.host, url.port)
request = Net::HTTP::Get.new(url)
request["apikey"] = ENV['APIKEY']
response = http.request(request)
puts response.read_body
package main
import (
"fmt"
"net/http"
"io/ioutil"
"os"
)
func main() {
url := "https://api.metadefender.com/v4/feed/infected/latest?page=1"
req, _ := http.NewRequest("GET", url, nil)
req.Header.Add("apikey", os.Getenv("APIKEY") )
res, _ := http.DefaultClient.Do(req)
defer res.Body.Close()
body, _ := ioutil.ReadAll(res.Body)
fmt.Println(string(body))
}
$uri = 'https://api.metadefender.com/v4/feed/infected/latest?page=1'
$headers = @{}
$headers.Add('apikey', $env:APIKEY)
$result = Invoke-WebRequest -Uri $uri -Headers $headers -UseBasicParsing
Write-Output $result.content
Available query parameters (all optional):
- page – selects the page of the feed to be retrieved, containing 1,000 threats. If omitted, defaults to the first page
- category - only include files of a certain category, like documents or APKs. See the documentation for a full list of categories
- date - the feed can be queried to return hashes from up to one year. Defaults to today
Threat Intelligence Feed Versions
| Features | Free | Commercial |
|---|---|---|
| Threat Name | ✓ | ✓ |
| File Type | ✓ | ✓ |
| Category | ✖ | ✓ |
| Historical Data | ✖ | Up to one year |
| Malware Signatures | 1,000 | Unlimited |
Log into your portal account or register if you don’t have an account to receive a MetaDefender Cloud API key. For more developer options, please see the API documentation here.