For builders

APIs, MCP & Threat Intel for Builders

Integrate IOCs and curated security signal into your tooling. Use the ThreatNoir MCP server for AI workflows, or the REST API for automation.

Open Developer Portal → View OpenAPI spec →

What you’ll find

Developer portal

MCP server + API key setup + copy/paste examples.

IOC search

Search and operationalize IOCs from approved sources.

Feed

Curated articles to power enrichment and triage workflows.

Podcast

Daily briefing as a fast “what changed?” input stream.

Start with this

Latest approved article (great sample input for your pipelines).

Browse feed →

Latest

KongTuke hackers now use Microsoft Teams for corporate breaches

Initial access broker KongTuke has moved to Microsoft Teams for social engineering attacks, taking as little as five minutes to gain persistent access to corporate networks. [...]