Network Analytics and Threat Sharing

Correlate and visualise advanced threat events to prioritise your response


Visualise each attack

Trend Micro™ Deep Discovery™ Inspector includes XDR capabilities to correlate detection events, showing you:

  • What the first point of attack was
  • Who else in the organisation is impacted
  • Where the threat is calling out to
  • How the initial breach happened*
  • Other potential targets**

*requires Trend Micro Apex One™ as a Service with XDR
**requires Trend Micro™ Cloud App Security with XDR


Standards-based sharing

Collect advanced threat intelligence from TAXII feeds or clients along with customer indicators of compromise (IoC) inputs and share threat intelligence across your network. The result? Fewer missed threats.


Event correlation

Examines relationships between events to help you understand the full extent of the attack, including high and low severity events to block all aspects of future breaches.


Mitigate current and existing threats with actionable threat intelligence

Reduce alerts noise expand_more

Prioritise and simplify attack data

Threat identification can produce a massive amount of data. Deep Discovery Inspector with XDR reduces time spent combing through alerts by correlating every event. This reveals the first point of entry by identifying patient zero, the attack’s full scope, where threats call out to, how infections occurred,* and other targets.

* requires Trend Micro Apex One as a Service with XDR
**requires Trend Micro Cloud App Security with XDR

Advanced threat sharing expand_more

Detect threats faster with advanced sharing

Staying ahead of the threat landscape can be difficult. Deep Discovery ingests the latest advanced threat intelligence (IoCs) from threat feeds and custom inputs (STIX/TAXII and YARA), then shares the data with Trend Micro and third-party solutions. Connected products can then detect and block threats, granting your security operations centre (SOC) greater visibility and control.

Advanced detection and response expand_more

See what you’ve been missing

Deep Discovery Inspector’s XDR capabilities are enabled by its integration with the Trend Vision One. Advanced detection and response capabilities provide visibility across security layers. With added context, seemingly benign events can become meaningful indicators of compromise. These alerts can then help you focus your response on the most pressing threats.

Real-time visualisation expand_more

Get real-time visualisation of targeted attacks

Attacks believed to have began today could have occurred weeks ago. A simple Sankey diagram helps visualise every step of an attack, dating back six months. Deep Discovery Inspector with XDR extracts metadata from network traffic and correlates events in a graph for real-time visibility for a faster resolution and a more complete picture of the attack.

Explore related resources


Solution Brief






Get started with Network Analytics and Threat Sharing