Watch Tower¶

The Office’s intelligence platform for industrial control systems and embedded infrastructure. Takes firmware vulnerability findings, enriches them with CVE data, CISA exploitation status, and EPSS probability scores, and produces intelligence that supports analyst decisions. It does not look for threats. It tells you whether the ones already found are currently relevant.

Built on MISP, Shuffle, CISA KEV, and EPSS. CVE enrichment via cve.circl.lu. Source: watch-tower.

Watch Tower documentation:

Firmware vulnerability intelligence