Contact Us

IronRadar enables security teams to “proactively block” known and new C2 servers, adversary infrastructure used by APT groups for launching attacks. Designed for easy integration, augmenting your cybersecurity stack to block C2 infrastructure is only an HTTP request away.

a5356001 83c8 4a2a 88fa 2c7b1bdcb01c

Product Overview

IronRadar provides emerging threat indicators to proactively block known and newly discovered C2 servers and adversary infrastructure, make informal decisions, and defend against today’s sophisticated attacks.

The IronRadar provides added value across all SOC functions and security teams by:
– Proactively blocking C2 infrastructure and reduce attack surface
– Enabling threat hunting, streamlining investigations with additional context and increasing productivity
– Detection engineering with SIEM rule creation
– Incident enrichment via SOAR
– Allowing CISOs to gain critical insight into the threat landscape

Built by our team of expert offensive and defensive cybersecurity operators in the IronNet Cyber Operations Center who bring unparalleled experience defending some of the world’s most secure networks and hunting for sophisticated attackers.

The feed has a well defined API enabling easy integration with existing cybersecurity tools – TIP, Firewall, SIEM, SOAR, EDR, and others. Integration information can be found at

Priced per single consuming IP. Not for distribution or enrichment.

Sold ByIronNet Cybersecurity
Fulfillment MethodSoftware as a Service (SaaS)


  • Patent pending approach to proactively identify C2 servers launching attacks using legitimate red team activities frameworks. Enables your SOC to “shift left” and actively block emerging threat indicators.
  • Allows security teams to become ‘intelligence led’ by exposing the adversaries and evolving tradecraft targeting your infrastructure enabling you to accelerate your threat response by prioritizing the threats that matter most.
  • Real-time threat intelligence integrated into any security solution – SIEM, SOAR, Incident Response, and more.

Pricing Information

Below are the total costs for these different subscription duration.
Additional taxes or fees may apply




Annual C2 Threat Intelligence Feed License (base subscription)

12 Months
Contact sales

Usage Information

Fulfillment Options

Software as a Service (SaaS)

AWS Marketplace CloudRanger Backup Recovery Deprecated

Software as a service is a delivery model for software applications whereby the vendor hosts and operates the application over the Internet. Customers pay for using the software without owning the underlying infrastructure. With SaaS Contracts, customers will pay for usage through their AWS bill.

End User License Agreement

By subscribing to this product you agree to terms and conditions outlined in the product End User License Agreement (EULA)