Microsoft announced the private preview of Microsoft Interflow, a platform for exchanging security and threat information between cybersecurity analysts and researchers. The information is automated and standardized to industry specifications like STIX (Structured Threat Information eXpression), TAXII (Trusted Automated eXchange of Indicator Information), and CybOX (Cyber Observable eXpression standards). This allows the platform to connect with existing tools through plug-ins and prevents that information from being locked into a proprietary format.
Interflow runs on Microsoft’s Azure cloud platform. An Azure subscription (or a free trial) is required for the computer and storage resources needed to check out the private preview of Interflow. The plan for the platform builds on the Microsoft Active Protections Program that has been operating since 2008.
For more information about Interflow and how you might request access for your organization can be found from these resources: