Requesting Demo TAXII Server Token

You can import threat intelligence data provided by the Kaspersky Threat Intelligence Portal to the OpenCTI Platform using the Kaspersky Feeds for OpenCTI connector. This connector analyzes the description property of STIX objects received from the TAXII server to produce additional STIX objects. It also analyzes their STIX relationships to help generate more comprehensive threat intelligence. To learn more about the Kaspersky Feeds for OpenCTI connector, please visit our GitHub.

To pull Demo Kaspersky Threat Data Feeds directly into third-party systems (e.g., OpenCTI) via TAXII, you need a Demo TAXII Server Token.

You can request, view, copy, and revoke your Demo TAXII Server Token.

To use the Kaspersky Threat Intelligence Portal API, you need to request an API token.

To request a Demo TAXII Server Token:

1. Open Kaspersky Threat Intelligence Portal at: https://opentip.kaspersky.com.
2. Make sure you are signed in with your Kaspersky Account.
3. In the <your email address> () drop-down menu, click Request token.

   The Request Token page opens.

4. In the Demo TAXII Server Token section, click the Request token button.

   The generated Demo TAXII Server Token appears — use the eye icon to view or hide the token.

   Information about the token's validity period and number of days before expiration is displayed.

5. If necessary, you can copy the token by clicking the button.

To revoke a Demo TAXII Server Token:

1. Open Kaspersky Threat Intelligence Portal at: https://opentip.kaspersky.com.
2. Make sure you are signed in with your Kaspersky Account.
3. In the <your email address> () drop-down menu, click Request token.

   The Request Token page opens.

4. In the Demo TAXII Server Token section, click the Revoke token button.

   The token becomes invalid.

To pull Demo Kaspersky Threat Data Feeds directly into third-party systems again, you must generate a new Demo TAXII Server token.

See also Managing an API token

Page top