DUBAI, DUBAI, UNITED ARAB EMIRATES, January 22, 2026 /EINPresswire.com/ -- ANY.RUN has launched a new integration with MISP that helps SOC teams validate threats faster and enrich investigations with behavior-based evidence. The integration brings sandbox detonation, IOC extraction, MITRE ATT&CK mapping, and real-time threat intelligence directly into MISP events, reducing manual work and improving the accuracy of security decisions.

????????????????-???????????? ?????????????? ???????????????? ???? ????????

The integration lets analysts detonate files and URLs directly from MISP and receive the full output back into the event: verdicts, IOCs, ATT&CK techniques, and reports. ANY.RUN TI Feeds complement this by supplying continuously updated malicious indicators, giving MISP users a reliable blend of behavior evidence and IOC intelligence.

???????????????????? ?????? ???????????????? ???????????????????????? ?????? ????????

The integration introduces several measurable improvements that strengthen triage, accelerate investigations, and support more efficient response operations.

· ?????????????? ????????: Behavioral detonation, automated verdicts, and IOC extraction accelerate alert validation and shorten investigation cycles.

· ???????????????? ???????????? ??????????????: Real execution evidence and ATT&CK mapping replace guesswork with full context, improving accuracy and reducing noise.

· ???????????? ?????????????? ????????????????????: Analysts can submit samples, review results, and enrich events without leaving MISP, removing manual steps and tool switching.

· ???????????? ?????? ?????????????????????? ?????? ??????????: Faster enrichment and consistent behavioral context strengthen service quality and help maintain customer response timelines.

· ?????????????? ???????????????????? ?????????????? ?????? ??????????: Automated analysis and continuous IOC updates increase SOC capacity during peak activity without expanding the team.

To explore its full capabilities and see how it strengthens investigation workflows, visit the ANY.RUN blog.

The integration requires no custom development and works as soon as it is enabled inside MISP. Teams can adopt behavior-driven triage and enrichment in minutes.

?????????? ??????.??????

ANY.RUN helps security teams understand threats faster and take action with confidence. Trusted by more than 500,000 security professionals and over 15,000 organizations worldwide, the solution combines interactive malware analysis with real-time threat intelligence to support accurate triage and quicker response. Its Interactive Sandbox, Threat Intelligence Lookup, and Threat Intelligence Feeds provide clear behavioral evidence and up-to-date context for SOC and incident response operations.

The ANY.RUN team
ANYRUN FZCO
+1 657-366-5050
email us here
Visit us on social media:
LinkedIn
YouTube
X

Legal Disclaimer:

EIN Presswire provides this news content "as is" without warranty of any kind. We do not accept any responsibility or liability for the accuracy, content, images, videos, licenses, completeness, legality, or reliability of the information contained in this article. If you have any complaints or copyright issues related to this article, kindly contact the author above.

Information contained on this page is provided by an independent third-party content provider. XPRMedia and this Site make no warranties or representations in connection therewith. If you are affiliated with this page and would like it removed please contact [email protected]