Contents x
Geo Enrichment
  • 1 Minute to read
  • Contributors
  • Print
  • Dark
    Light
  • PDF
Contents

Geo Enrichment

  • 1 Minute to read
  • Contributors
  • Print
  • Dark
    Light
  • PDF

A Geo enrichment is used to contextually enrich IP addresses captured in log data with geographic location intelligence. It includes all the information regarding a particular IP address such as the country code, location, latitude and longitude, ISP details. The ability to identify the criticality with this enriched information is the key to have a clear understanding to threat hunters and analysts to initiate faster decisions and actions.

Geo Enrichment in DNIF is powered by GeoLite2 data created by MaxMind, available from:
https://www.maxmind.com.

Was this article helpful?
What's Next

Cookie consent

By entering and using this site, you consent to the use of only necessary cookies to enhance your site experience and improve our services.