Correlens

Threat Intelligence

The open web, the dark web and the deep net. Ranked for you.

Not another firehose. Every signal is scored against your suppliers, your components and your programs, then lands in one queue your analysts can actually work.

Threat Intelligence · Feed sample data
Code leak0.92
Public repo exposes CI config referencing an internal supplier build domain
InfotainmentOTA
dark web · 2 h ago · to validate
OSINT0.84
Threat actor advertises stolen data from a named engineering-services supplier
Supply chainData leak
dark-net market · 1 d ago · under investigation
Publication0.81
Fault-injection bypass of debug-lock on a common automotive MCU family
MCUFirmware extraction
conference · 3 d ago · confirmed
scored for your context · correlated to your SBOM and suppliers

Sources

Curated sources, not a random scrape.

Authoritative advisories, research, and the corners of the web that matter for what you ship. We name the public feeds; how we curate and score them stays ours.

Sources public feeds
CISA KEVknown exploited
NIST NVDCVE feed
FIRST EPSSexploit probability
Automotive Security Research GroupCVE · automotive
Bosch PSIRTvendor advisories
Siemens ProductCERTvendor advisories
CERT@VDEindustrial
ZDI Pwn2Own Automotiveoffensive research
GitHub DMCA takedownscode leak
Dark-web & deep-netsandboxed collection
Conference researchpublications
Your watchlistscurated · portable STIX 2.1

Correlation

A signal in the wild, tied to the part you ship.

Raw intel is noise until it is connected. Correlens correlates every signal to your SBOM, your suppliers and your programs, so a leak becomes a triaged item with an owner.

  • Supplier breach to the components that supplier ships you.
  • Exploit chatter to the exact node and program it reaches.
  • Tags like Android Auto, USB or CAN to speed a PSIRT to what matters.
The correlation others misssample data

A connected supplier is breached and the stolen data is advertised on a dark-net market. The platform flags the signal, correlates it to the components that supplier ships and the exact nodes and programs at risk, and hands a triaged item to a person. Minutes, with a full trail.

AI with humans in control

The AI reads the noise. The analyst makes the call.

AI accelerates
1Scores relevance and confidence against your context
2Summarizes and translates foreign-language sources
3Correlates the signal to component, node and supplier
4Deduplicates the same event across many sources
Humans decide
AConfirm relevance before anything escalates
BTriage into vulnerability management
CExport a confirmed incident as STIX 2.1 for your (V)SOC or PSIRT
DOverride any AI verdict; the person is the authority

Put the feed to work on what you ship.

Book a demo