Introducing the First Fully Automated, Lightweight Threat Intelligence Platform (TIP) for Small to Mid-sized Security Teams
CTIX Lite is a comprehensive solution with premium feeds, enrichment, and automation in a single platform. This complete, all-in-one solution enables automation throughout the threat intelligence lifecycle to accelerate a proactive defense against threats, and all for one-fifth of the cost of other enterprise TIPs.

Threat Intel Automation Platform Pre-Loaded with Premium Intelligence Feeds and Enrichment Sources

Finally, a Threat Intelligence Solution for Teams that...
Ingest, Analyze, and Act on Relevant, Enriched Intelligence
Detect Threats Faster with Advanced TIP Features
Automate Threat Intel Workflows for Faster, Smarter Security
Premium Feeds
Flashpoint IOCs and CVEs
Bambenek IP and Domain Feed
Cyware Threat Feed

PolySwarm
*Coming soon
Enrichment Sources
Comodo Valkyrie

PolySwarm
Compare CTIX Product Editions
Features/Capabilities | CTIX Lite | CTIX Enterprise |
---|---|---|
Dashboard | Out-of-the-box Dashboard Sharing of Dashboard | Out-of-the-box Dashboard Sharing of Dashboard Feeds ROI |
Live Activity
| - | All |
Report | Out-of-the-box Widgets | Out-of-the-box Widgets |
Intel Collection |
Unlimited Ingestion of IOC Threat Data - All SDO support (STIX 1.x, 2.0 and 2.1 support) Intel Package Threat Bulletin - View Unstructured Intel - RSS Unstructured Intel - Threat Mailbox - Quick Add Intel Webscraper Manual Intel Ingestion via text, URL, file import |
Unlimited Ingestion of IOC Threat Data - All SDO support (STIX 1.x, 2.0 and 2.1 support) Intel Package Threat Bulletin - Create and View Unstructured Intel - RSS Unstructured Intel - Threat Mailbox Unstructured Intel - Twitter Module Quick Add Intel Webscraper, Webhooks Manual Intel Ingestion via text, URL, file import |
Inbox Capabilities | Sharing is allowed to any 3 TAXII Feed Providers | Unlimited |
Indicators Allowed (Whitelist) | All | All |
Intel Scoring | Custom Confidence Score Engine | Custom Confidence Score Engine |
Rules Engine | Build Your Own Rules - Max 10 Active Rules | Build Your Own Rules - Unlimited |
Attack Navigator | Full Version | Full Version |
Threat Visualizer | - | Full Version |
Analyst Workbench | - | Fang-Defang STIX Conversion Encode-Decode 64 CVSS Calculator Network Utilities |
Task Management | - | Create and Action tasks |
My Org | Saved Search Tagging Background Tasks Global Notes - Manual Review Yara Rules - |
Saved Search Tagging Background Tasks Global Notes Watchlist Manual Review Yara Rules Domain Fuzzer |
Authentication | Username/Password - 2FA Enabled - Email/TOTP | Username/Password LDAP 2FA Enabled - Email/TOTP |
Integration | API Feed Connectors (Require Clients to enter API/License keys) Mandiant Threat IntelligenceCofense Intel 471 Dragos Crowdstrike Recorded Future Sixgill Flexera Volon Bambenek (Out-of-the-box Paid Premium Integration Enabled) Flashpoint (Out-of-the-box Paid Premium Integration Enabled) Cyware Threat Feeds (Out-of-the-box Integration Enabled) Out-of-the-box Paid Premium Versions Enabled | API Feed Connectors (Require Clients to enter API/License keys) Mandiant Threat IntelligenceCofense Intel 471 Dragos Crowdstrike Recorded Future Sixgill Flexera Volon Bambenek Flashpoint Cyware Threat Feeds No Out-of-the-box Paid Premium Versions Enabled |
Feed Enrichment | Connectors available in system (Require Clients to enter API/License keys) VirusTotal 2Hybrid Analysis Shodan WhoIs AbuseIPBD Alexa Bluecoat AlienVault OTX CVE Details Exploit Database Farsight DNSDB Google Browsing Have I been PWNED IBM Xforce Mandiant Threat Intelligence Maximind MX Toolbox NVD Phishtank Risk IQ Comodo (Out-of-the-box Paid Premium Integration enabled) Polyswarm (Out-of-the-box Paid Premium Integration enabled) Out-of-the-box Paid Premium Versions Enabled | Connectors available in system (Require Clients to enter API/License keys) VirusTotal 2Hybrid Analysis Shodan WhoIs AbuseIPBD Alexa Bluecoat AlienVault OTX CVE Details Exploit Database Farsight DNSDB Google Browsing Have I been PWNED IBM Xforce Mandiant Threat Intelligence Maximind MX Toolbox NVD Phishtank Risk IQ Comodo Polyswarm No Out-of-the-box Paid Premium Versions Enabled |
Tool Integration - SIEM | QRadar, Exabeam, Splunk | QRadar, Exabeam, Splunk |
Tool Integration - CSOL Agent | QRadar Cortex XSOAR Splunk Splunk Phantom Exabeam | QRadar Cortex XSOAR Splunk Splunk Phantom Exabeam |
Tool Integration - SOAR Solution | Splunk Phantom Cortex XSOAR | Splunk Phantom Cortex XSOAR |
Tool Integration - Firewall | - | PFsense |
Tool Integration - Communicating Tools | - | Mattermost Plivo Twilio Sendgrid Msg91 |
Console Status | - | Fully Enabled |
SSO Enablement | - | Yes |
Hub and Spoke | - | Yes |
Administration |
Request a Demo of CTIX Lite
CTIX Lite is available to select organizations based on the size of their security team and other additional criteria determined by Cyware. Request a demo to learn more and see if this is a fit for your organization.
Frequently Asked Questions
Is CTIX Lite the right platform for me?
Traditional threat intelligence platforms (TIPs) have been designed for large enterprises. However, the present-day threat landscape necessitates it for the security teams of all sizes and budgets to have their own automated TIP that enables them to ingest, analyze, enrich, and take actions on threat intelligence in real-time. If you are a small or mid-sized security team facing similar challenges, then CTIX Lite is the right platform for you.