About

Torch is a threat intelligence platform for the central collection, analysis, and management of indicators of compromise (IOCs). The platform supports security analysts in detecting, assessing, and mitigating cyber threats.

Features

Collection and management of IP and domain indicators with geolocation data
Association of malware families and ATT&CK techniques with indicators
Automatic risk scoring based on linked threat data
Flexible search queries with saveable filters
Watchlists and configurable alert rules
Blocklist export in multiple formats (TXT, JSON, CSV)
Graph-based visualization of relationships between indicators and threats
REST API with full Swagger documentation

Technology

Backend: Go with Chi router and PostgreSQL
Frontend: Next.js with React and Tailwind CSS
Database queries: sqlc (type-safe SQL generation)
Authentication: JWT with httpOnly cookies

Contact

For questions or feedback, reach us at jan.rehberg@cskittens.com.

About

Features

Collection and management of IP and domain indicators with geolocation data
Association of malware families and ATT&CK techniques with indicators
Automatic risk scoring based on linked threat data
Flexible search queries with saveable filters
Watchlists and configurable alert rules
Blocklist export in multiple formats (TXT, JSON, CSV)
Graph-based visualization of relationships between indicators and threats
REST API with full Swagger documentation

Technology

Backend: Go with Chi router and PostgreSQL
Frontend: Next.js with React and Tailwind CSS
Database queries: sqlc (type-safe SQL generation)
Authentication: JWT with httpOnly cookies

Contact

For questions or feedback, reach us at jan.rehberg@cskittens.com.