ESET Online Help

Search
Select the topic

TAXII Feeds

Data feeds are available as STIX feeds via TAXII. You can see the list of TAXII feeds and activate the desired ones in the TAXII FEEDS section. The feeds can be accessed or incorporated into your internal system by a standard TAXII interface. See the sample Python script for accessing TAXII feeds. When downloaded and extracted, open the script in a simple text editor to see further instructions for use.

Additionally, you can access TAXII feeds via the Postman template. To start using it, download the file, import it to Postman and set the variables values as described in the template.

To learn how to activate a TAXII feed, see the next chapter.

Data retention and filtering

The TAXII feeds data retention is two weeks; data older than 14 days is not available for retrieval.

To review the TAXII feeds from a specific period, use the added_after filter parameter with a timestamp value in the "YYYY-MM-DDTHH:MM:SS.ssssssZ" format. This way, the system will return the objects added after the specified timestamp. To learn more information, review the TAXII 2.1 specification.

If you do not provide the added_after filter parameter, the system will automatically set the default timestamp: two days before the current date and time. In this case, you will receive the TAXII feeds from the past two days.

Feed formats

All TAXII Feeds are available in STIX 2.1 format via TAXII 2.1 collections.

 

To preview a sample feed in the portal, select a report collection and click Download example. The downloaded JSON file contains a static sample feed that does not have live data; it is not updated.

The discovery link for TAXII feeds: https://taxii.eset.com/taxii2

You can choose from several types of feeds:

Feed

TAXII feed name

TAXII 2 ID

TAXII 2 feed URL

Android infostealer feed

androidinfostealer stix 2.1

9ee501cde0c44d6db4ae995fead1a7c8

https://taxii.eset.com/taxii2/643f4eb5-f8b7-46a3-a606-6d61d5ce223a/collections/9ee501cde0c44d6db4ae995fead1a7c8/

Android threats feed

androidthreats stix 2.1

daf3de8fab144552a1cb5af054ed07ee

https://taxii.eset.com/taxii2/643f4eb5-f8b7-46a3-a606-6d61d5ce223a/collections/daf3de8fab144552a1cb5af054ed07ee/

APT IoC

apt stix 2.1

97e3eb74ae5f46dd9e22f677a6938ee7

https://taxii.eset.com/taxii2/643f4eb5-f8b7-46a3-a606-6d61d5ce223a/collections/97e3eb74ae5f46dd9e22f677a6938ee7/

Botnet feed

botnet stix 2.1

0abb06690b0b47e49cd7794396b76b20

https://taxii.eset.com/taxii2/643f4eb5-f8b7-46a3-a606-6d61d5ce223a/collections/0abb06690b0b47e49cd7794396b76b20/

Botnet - C&C

botnet.cc stix 2.1

d1923a526e8f400dbb301259240ee3d5

https://taxii.eset.com/taxii2/643f4eb5-f8b7-46a3-a606-6d61d5ce223a/collections/d1923a526e8f400dbb301259240ee3d5/

Botnet -Target

botnet.target stix 2.1

61b6e4f9153e411ca7a9982a2c6ae788

https://taxii.eset.com/taxii2/643f4eb5-f8b7-46a3-a606-6d61d5ce223a/collections/61b6e4f9153e411ca7a9982a2c6ae788/

Cryptoscam feed

cryptoscam stix 2.1

2c183ce9551a43338c6cc2ed7c2a704d

https://taxii.eset.com/taxii2/643f4eb5-f8b7-46a3-a606-6d61d5ce223a/collections/2c183ce9551a43338c6cc2ed7c2a704d/

Domain feed

domain stix 2.1

a34aa0a4f9de419582a883863503f9c4

https://taxii.eset.com/taxii2/643f4eb5-f8b7-46a3-a606-6d61d5ce223a/collections/a34aa0a4f9de419582a883863503f9c4/

IP feed

ip stix 2.1

baaed2a92335418aa753fe944e13c23a

https://taxii.eset.com/taxii2/643f4eb5-f8b7-46a3-a606-6d61d5ce223a/collections/baaed2a92335418aa753fe944e13c23a/

Malicious email attachments feed

emailattachments stix 2.1

c0d56cf7f81d482eb97fd46beaa4bae0

https://taxii.eset.com/taxii2/643f4eb5-f8b7-46a3-a606-6d61d5ce223a/collections/c0d56cf7f81d482eb97fd46beaa4bae0/

Malicious files feed

file stix 2.1

ee6a153ed77e4ec3ab21e76cc2074b9f

https://taxii.eset.com/taxii2/643f4eb5-f8b7-46a3-a606-6d61d5ce223a/collections/ee6a153ed77e4ec3ab21e76cc2074b9f/

Phishing URL feed

phishingurl stix 2.1

d0a6c0f962dd4dd2b3eeb96b18612584

https://taxii.eset.com/taxii2/643f4eb5-f8b7-46a3-a606-6d61d5ce223a/collections/d0a6c0f962dd4dd2b3eeb96b18612584/

Ransomware feed

ransomware stix 2.1

8d3490d688ce4a989aee9af5c680d8bf

https://taxii.eset.com/taxii2/643f4eb5-f8b7-46a3-a606-6d61d5ce223a/collections/8d3490d688ce4a989aee9af5c680d8bf/

Scam URL feed

scamurl stix 2.1

2130adc3c67c43f9a3664b187931375e

https://taxii.eset.com/taxii2/643f4eb5-f8b7-46a3-a606-6d61d5ce223a/collections/2130adc3c67c43f9a3664b187931375e/

Smishing feed

smishing stix 2.1

330ad7d0c736476babe5e49077b96c95

https://taxii.eset.com/taxii2/643f4eb5-f8b7-46a3-a606-6d61d5ce223a/collections/330ad7d0c736476babe5e49077b96c95/

SMS scam feed

smsscam stix 2.1

6e20217a2e1246b8ab11be29f759f716

https://taxii.eset.com/taxii2/643f4eb5-f8b7-46a3-a606-6d61d5ce223a/collections/6e20217a2e1246b8ab11be29f759f716/

URL feed

url stix 2.1

1d3208c143be49da8130f5a66fd3a0fa

https://taxii.eset.com/taxii2/643f4eb5-f8b7-46a3-a606-6d61d5ce223a/collections/1d3208c143be49da8130f5a66fd3a0fa/


note

Fair Use Policy limitations may apply.