ThreatX WAF

The ThreatX Web Application Firewall (WAF) is a next-generation security solution designed to protect web applications and APIs from a wide range of cyber threats. It combines behavioral analysis, threat intelligence, and machine learning to deliver comprehensive protection against known and emerging threats.

Integration Method: API

Tables: HTTP Activity, Detection Finding

Integration

DataBee integrates with ThreatX APIs to pull in information about blocked events either from security or policy. This has been tested against ThreatX API version V1.

ThreatX Configuration

1. Login to ThreatX WAF

2. Navigate to the Settings and then API KEYS.

   

3. Click on Add API Key.

   

4. Fill out the necessary details here then click on save

   

5. You will see the following dialogue box. Make sure you copy and store the API key from here as it will be only shown once.

   

DataBee Configuration

1. Go to databee UI then Click on Data -> Data Sources

   

2. Click on Add New Data Source and search for ThreatX. Click on ThreatX

   

3. Click on API Ingest

   

4. Add Data Source Name, Owner Name and E-Mail and then click on next.

5. In the endpoint configuration page, enter the API KEY in the Secret Key field and click on submit. There is no need to change the API URL or Token URL.

   

6. Click Submit