Key Use Cases

Category: Features & Tools

Use Case 1: Preemptive Detection of Attack Infrastructure

For: Resilience Lead, Threat Intelligence Lead

Identify and disrupt attacker infrastructure preparing to exploit known exposures before an attack begins. Malanta monitors early attacker setup signals and maps infrastructure to your external attack surface.

KPIs: Mean Time to Preempt (MTTP), Number of attack infrastructures disrupted during staging.

Use Case 2: Eliminate Staged Adversary Infrastructure

For: Threat Intelligence Lead, Detection Engineering Manager

Identify and dismantle complete attacker infrastructure clusters during staging. Malanta correlates infrastructure using ownership certificates, DNS, hosting, and behavioral patterns.

KPIs: Number of full infrastructure clusters identified, Time from first detection to full disruption.

Use Case 3: Hunt Hidden Threats

For: SOC Threat Hunter, Detection Engineer

Detect adversary reconnaissance and validation activity before escalation. SOC teams query logs against Malanta's pre-attack intelligence to surface micro-probing activity.

KPIs: Number of reconnaissance activities detected, Time to detection during pre-attack phase.

Use Case 4: Expand IOCs into Full Infrastructure Disruption

For: Threat/Open Source Intelligence Lead, SOC Manager

Use existing IOCs to find and dismantle attacker infrastructure and uncover additional attack resources. Malanta pivots from IOCs to reveal fallback systems and supporting assets.

KPIs: Number of infrastructure assets discovered per IOC, Percentage of IOCs expanded into full infrastructure views.

Updated on: 26/02/2026