Recorded Future Feed

Details
Content
Dependencies
Version History

Ingests indicators from Recorded Future feeds into Demisto.

Indicator Fields

Name	Description
Recorded Future Evidence Details	Evidence details JSON returned from Recorded Future
Recorded Future Risk Score	Recorded Future Risk Score
Recorded Future Feed Threat assessment	Recorded Future Threat Assessment
Recorded Future Risk Rule Count	Rule score count from Recorded Future

Integrations

Name	Description
Recorded Future RiskList Feed	Ingests indicators from Recorded Future feeds into Demisto.

Indicator Fields

Name	Description
Recorded Future Risk Rule Count	Rule score count from Recorded Future
Recorded Future Risk Score	Recorded Future Risk Score
Recorded Future Feed Threat assessment	Recorded Future Threat Assessment
Recorded Future Evidence Details	Evidence details JSON returned from Recorded Future

Integrations

Name	Description
Recorded Future RiskList Feed	Ingests indicators from Recorded Future feeds into Demisto.

Pack Name	Pack By
Base	By: Cortex XSOAR

Pack Name	Pack By
Common Types	By: Cortex XSOAR

Pack Name	Pack By
Base	By: Cortex XSOAR

1.2.2 - 4555709 (August 17, 2025)

Integrations

Recorded Future RiskList Feed

Fixed an issue where the Remove rawJSON from indicators parameter was not handled correctly.
Updated the Docker image to: demisto/python3:3.12.11.4508456.

Related pull requests:
- 40960

Download

1.2.1 - R4512458 (August 13, 2025)

Integrations

Recorded Future RiskList Feed

Fixed an issue where the Recorded Future Threat Assessment indicator field was not being ingested.

Related pull requests:
- 40750

Download

1.2.0 - 4275053 (July 23, 2025)

Integrations

Recorded Future RiskList Feed

Updated the CVE risk labels to be compatible with the Recorded Future documentation.

Related pull requests:
- 40637

Download

1.1.9 - 4233745 (July 20, 2025)

Indicator Fields

New: Recorded Future Feed Threat assessment

New: Added a new indicator field - Recorded Future Feed Threat assessment that Recorded Future Threat Assessment

New: Recorded Future Risk Rule Count

New: Added a new indicator field - Recorded Future Risk Rule Count that Rule score count from Recorded Future

Integrations

Recorded Future RiskList Feed

Updated the Recorded Future Feed integration to support the new indicator fields.

Related pull requests:
- 40210

Download

1.1.8 - R3534539 (May 25, 2025)

Integrations

Recorded Future RiskList Feed

Updated the Remove rawJSON from indicators parameter in the integration to be enabled by default.
Updated the Docker image to: demisto/python3:3.12.8.3296088.

Related pull requests:
- 39802

Download

1.1.7 - 3042633 (April 2, 2025)

Integrations

Recorded Future RiskList Feed

Metadata and documentation improvements.

Related pull requests:
- 39088

Download

1.1.6 - R2988527 (March 26, 2025)

Integrations

Recorded Future RiskList Feed

Updated the Docker image to: demisto/python3:3.11.10.115186.

Related pull requests:
- 37164

Download

1.2.2 - 4555709 (August 17, 2025)

Integrations

Recorded Future RiskList Feed

Fixed an issue where the Remove rawJSON from indicators parameter was not handled correctly.
Updated the Docker image to: demisto/python3:3.12.11.4508456.

Related pull requests:
- 40960

Download

1.2.1 - R4524270 (August 14, 2025)

Integrations

Recorded Future RiskList Feed

Fixed an issue where the Recorded Future Threat Assessment indicator field was not being ingested.

Related pull requests:
- 40750

Download

1.2.0 - 4275053 (July 23, 2025)

Integrations

Recorded Future RiskList Feed

Updated the CVE risk labels to be compatible with the Recorded Future documentation.

Related pull requests:
- 40637

Download

1.1.9 - 4233745 (July 20, 2025)

Indicator Fields

New: Recorded Future Feed Threat assessment

New: Added a new indicator field - Recorded Future Feed Threat assessment that Recorded Future Threat Assessment

New: Recorded Future Risk Rule Count

New: Added a new indicator field - Recorded Future Risk Rule Count that Rule score count from Recorded Future

Integrations

Recorded Future RiskList Feed

Updated the Recorded Future Feed integration to support the new indicator fields.

Related pull requests:
- 40210

Download

1.1.8 - R3534539 (May 25, 2025)

Integrations

Recorded Future RiskList Feed

Updated the Remove rawJSON from indicators parameter in the integration to be enabled by default.
Updated the Docker image to: demisto/python3:3.12.8.3296088.

Related pull requests:
- 39802

Download

1.1.7 - 3042633 (April 2, 2025)

Integrations

Recorded Future RiskList Feed

Metadata and documentation improvements.

Related pull requests:
- 39088

Download

1.1.6 - R2988527 (March 26, 2025)

Integrations

Recorded Future RiskList Feed

Updated the Docker image to: demisto/python3:3.11.10.115186.

Related pull requests:
- 37164

Download

PUBLISHER

PLATFORMS

Cortex XSOARCortex XSIAM

INFO

Certification	Certified	Read more
Supported By	Cortex
Created	July 5, 2020
Last Release	August 17, 2025

WORKS WITH THE FOLLOWING INTEGRATIONS:

DISCLAIMER

Content packs are licensed by the Publisher identified above and subject to the Publisher’s own licensing terms. Palo Alto Networks is not liable for and does not warrant or support any content pack produced by a third-party Publisher, whether or not such packs are designated as “Palo Alto Networks-certified” or otherwise.