From 64a24a3de9d1011f3aeca97bc793abbd70e2fb30 Mon Sep 17 00:00:00 2001
From: alexandramoraru <alexandramoraru@cloudflare.com>
Date: Thu, 11 Jun 2026 14:23:54 +0100
Subject: [PATCH] refactor: deprecate Security Center, move content to Threat
 Intelligence & Application Security
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

RFC: Deprecate Security Center documentation section

- Move infrastructure/ → application-security/infrastructure/
- Move investigate/ → threat-intelligence/investigate-portal/
- Move brand-protection → threat-intelligence/brand-protection
- Move indicator-feeds → threat-intelligence/custom-indicator-feeds
- Move intel-apis/ → threat-intelligence/threat-intelligence-apis/
- Move cloudforce-one/ → threat-intelligence/threat-intelligence-platform/
- Move changelog, get-started → threat-intelligence/
- Rewrite threat-intelligence/index.mdx as new overview page
- Update all frontmatter product references and internal links
- Add 301 redirect rules for every moved page + catch-all
- Delete old security-center/ directory
---
 public/__redirects                            | 39 ++++++++++++++++
 .../infrastructure/index.mdx                  |  6 +--
 .../infrastructure/security-file.mdx          |  2 +-
 src/content/docs/security-center/index.mdx    | 39 ----------------
 .../brand-protection.mdx                      |  9 ++--
 .../changelog.mdx                             |  2 +-
 .../custom-indicator-feeds.mdx}               |  2 +-
 .../get-started.mdx                           | 10 ++++-
 .../docs/threat-intelligence/index.mdx        | 45 +++++++++++++++++++
 .../change-categorization.mdx                 |  2 +-
 .../investigate-portal}/index.mdx             |  2 +-
 .../investigate-threats.mdx                   | 10 ++---
 .../investigate-portal}/scan-limits.mdx       |  2 +-
 .../threat-intelligence-apis}/index.mdx       |  4 +-
 .../threat-intelligence-apis}/limits.mdx      |  2 +-
 .../manage-miscategorization-reports.mdx      |  2 +-
 .../cloudforce-one.mdx                        |  2 +-
 .../threat-intelligence-platform}/index.mdx   |  2 +-
 .../open-port-scanning.mdx                    |  4 +-
 19 files changed, 120 insertions(+), 66 deletions(-)
 rename src/content/docs/{security-center => application-security}/infrastructure/index.mdx (78%)
 rename src/content/docs/{security-center => application-security}/infrastructure/security-file.mdx (99%)
 delete mode 100644 src/content/docs/security-center/index.mdx
 rename src/content/docs/{security-center => threat-intelligence}/brand-protection.mdx (92%)
 rename src/content/docs/{security-center => threat-intelligence}/changelog.mdx (98%)
 rename src/content/docs/{security-center/indicator-feeds.mdx => threat-intelligence/custom-indicator-feeds.mdx} (99%)
 rename src/content/docs/{security-center => threat-intelligence}/get-started.mdx (84%)
 create mode 100644 src/content/docs/threat-intelligence/index.mdx
 rename src/content/docs/{security-center/investigate => threat-intelligence/investigate-portal}/change-categorization.mdx (99%)
 rename src/content/docs/{security-center/investigate => threat-intelligence/investigate-portal}/index.mdx (98%)
 rename src/content/docs/{security-center/investigate => threat-intelligence/investigate-portal}/investigate-threats.mdx (87%)
 rename src/content/docs/{security-center/investigate => threat-intelligence/investigate-portal}/scan-limits.mdx (97%)
 rename src/content/docs/{security-center/intel-apis => threat-intelligence/threat-intelligence-apis}/index.mdx (99%)
 rename src/content/docs/{security-center/intel-apis => threat-intelligence/threat-intelligence-apis}/limits.mdx (97%)
 rename src/content/docs/{security-center/intel-apis => threat-intelligence/threat-intelligence-apis}/manage-miscategorization-reports.mdx (98%)
 rename src/content/docs/{security-center/cloudforce-one => threat-intelligence/threat-intelligence-platform}/cloudforce-one.mdx (90%)
 rename src/content/docs/{security-center/cloudforce-one => threat-intelligence/threat-intelligence-platform}/index.mdx (99%)
 rename src/content/docs/{security-center/cloudforce-one => threat-intelligence/threat-intelligence-platform}/open-port-scanning.mdx (96%)

diff --git a/public/__redirects b/public/__redirects
index ce74646b758..15fa481d9b8 100644
--- a/public/__redirects
+++ b/public/__redirects
@@ -2970,3 +2970,42 @@
 
 # Security Insights (moved from Security Center to Security)
 /security-center/security-insights/* /security/security-insights/:splat 301
+
+# ==========================================================================
+# Security Center deprecation – content moved to Threat Intelligence
+# and Application Security (RFC: deprecate-security-center)
+# ==========================================================================
+
+# Infrastructure → Application Security
+/security-center/infrastructure/ /application-security/infrastructure/ 301
+/security-center/infrastructure/security-file/ /application-security/infrastructure/security-file/ 301
+
+# Investigate → Threat Intelligence / Investigate Portal
+/security-center/investigate/ /threat-intelligence/investigate-portal/ 301
+/security-center/investigate/change-categorization/ /threat-intelligence/investigate-portal/change-categorization/ 301
+/security-center/investigate/investigate-threats/ /threat-intelligence/investigate-portal/investigate-threats/ 301
+/security-center/investigate/scan-limits/ /threat-intelligence/investigate-portal/scan-limits/ 301
+
+# Brand Protection → Threat Intelligence
+/security-center/brand-protection/ /threat-intelligence/brand-protection/ 301
+
+# Indicator Feeds → Threat Intelligence / Custom Indicator Feeds
+/security-center/indicator-feeds/ /threat-intelligence/custom-indicator-feeds/ 301
+
+# Intel APIs → Threat Intelligence / Threat Intelligence APIs
+/security-center/intel-apis/ /threat-intelligence/threat-intelligence-apis/ 301
+/security-center/intel-apis/limits/ /threat-intelligence/threat-intelligence-apis/limits/ 301
+/security-center/intel-apis/manage-miscategorization-reports/ /threat-intelligence/threat-intelligence-apis/manage-miscategorization-reports/ 301
+
+# Cloudforce One → Threat Intelligence / Threat Intelligence Platform
+/security-center/cloudforce-one/ /threat-intelligence/threat-intelligence-platform/ 301
+/security-center/cloudforce-one/cloudforce-one/ /threat-intelligence/threat-intelligence-platform/cloudforce-one/ 301
+/security-center/cloudforce-one/open-port-scanning/ /threat-intelligence/threat-intelligence-platform/open-port-scanning/ 301
+
+# Top-level pages
+/security-center/changelog/ /threat-intelligence/changelog/ 301
+/security-center/get-started/ /threat-intelligence/get-started/ 301
+
+# Catch-all: any remaining /security-center/ path → Threat Intelligence overview
+/security-center/ /threat-intelligence/ 301
+/security-center/* /threat-intelligence/:splat 301
diff --git a/src/content/docs/security-center/infrastructure/index.mdx b/src/content/docs/application-security/infrastructure/index.mdx
similarity index 78%
rename from src/content/docs/security-center/infrastructure/index.mdx
rename to src/content/docs/application-security/infrastructure/index.mdx
index 99ac1055e56..ad9932c2071 100644
--- a/src/content/docs/security-center/infrastructure/index.mdx
+++ b/src/content/docs/application-security/infrastructure/index.mdx
@@ -3,7 +3,7 @@ pcx_content_type: overview
 title: Infrastructure
 description: View IT assets, domains, and IP addresses associated with your Cloudflare account.
 products:
-  - security-center
+  - application-security
 sidebar:
   order: 5
 ---
@@ -16,10 +16,10 @@ The **Infrastructure** tab provides an overview of the IT assets associated with
 
 [Security Insights](/security/security-insights/) scans populate Infrastructure data. Initial scan time depends on the number of IT assets across the domains in your account.
 
-To open the **Infrastructure** tab, go to Account Home > **Security Center** > **Infrastructure**.
+To open the **Infrastructure** tab, go to Account Home > **Application Security** > **Infrastructure**.
 
 From the Infrastructure tab, you can:
 
 - **Filter the displayed information** — Narrow results by specific assets, domains, or configurations to focus on areas of interest.
 - **Print or download a PDF report** — Generate a report of your infrastructure overview for offline review or sharing with your team.
-- **Manage your security.txt file** — Create or update a [`security.txt`](/security-center/infrastructure/security-file/) file that provides security researchers with a standardized way to report vulnerabilities.
+- **Manage your security.txt file** — Create or update a [`security.txt`](/application-security/infrastructure/security-file/) file that provides security researchers with a standardized way to report vulnerabilities.
diff --git a/src/content/docs/security-center/infrastructure/security-file.mdx b/src/content/docs/application-security/infrastructure/security-file.mdx
similarity index 99%
rename from src/content/docs/security-center/infrastructure/security-file.mdx
rename to src/content/docs/application-security/infrastructure/security-file.mdx
index dd8162ef98d..d6416a8b295 100644
--- a/src/content/docs/security-center/infrastructure/security-file.mdx
+++ b/src/content/docs/application-security/infrastructure/security-file.mdx
@@ -3,7 +3,7 @@ pcx_content_type: concept
 title: Set up your security.txt file
 description: Manage your security.txt file via the dashboard or the API.
 products:
-  - security-center
+  - application-security
 sidebar:
   order: 4
 ---
diff --git a/src/content/docs/security-center/index.mdx b/src/content/docs/security-center/index.mdx
deleted file mode 100644
index 00ef9738efe..00000000000
--- a/src/content/docs/security-center/index.mdx
+++ /dev/null
@@ -1,39 +0,0 @@
----
-title: Cloudflare Security Center
-pcx_content_type: overview
-description: Review security insights, investigate threats, and protect your brand from impersonation.
-products:
-  - security-center
-sidebar:
-  order: 1
-head:
-  - tag: title
-    content: Overview
----
-
-import { LinkButton, Render } from "~/components";
-
-<Render file="security-center-definition" product="security-center" />
-
-## Main features
-
-<Render file="main-features" product="security-center" />
-
-<LinkButton variant="primary" href="/security-center/get-started/">
-	Get started
-</LinkButton>
-
----
-
-## Availability
-
-Cloudflare Security Center is available to customers on all plans.
-
-The frequency of automatic security scans depends on your Cloudflare plan, ranging from every 7 days on Free, Pro, and Business plans to every 3 days on Enterprise plans. Refer to [Scan frequency](/security/security-insights/how-it-works/#scan-frequency) for more information.
-
-If you have any comments, questions, or bugs to report, create a post in the [Cloudflare Community forum](https://community.cloudflare.com/c/security/security-center/65).
-
-## Limitations
-
-- Users with an [Administrator Read Only](/fundamentals/manage-members/roles/#account-scoped-roles) role cannot access the Cloudflare Security Center.
-- Only Cloudflare accounts with at least one Business or Enterprise zone (domain on your account), or accounts on the Teams Standard or Teams Enterprise plans, can manually start a new scan.
diff --git a/src/content/docs/security-center/brand-protection.mdx b/src/content/docs/threat-intelligence/brand-protection.mdx
similarity index 92%
rename from src/content/docs/security-center/brand-protection.mdx
rename to src/content/docs/threat-intelligence/brand-protection.mdx
index d484c91cba8..f139702af06 100644
--- a/src/content/docs/security-center/brand-protection.mdx
+++ b/src/content/docs/threat-intelligence/brand-protection.mdx
@@ -3,7 +3,7 @@ pcx_content_type: concept
 title: Brand Protection
 description: Detect phishing domains and impersonation attempts targeting your brand.
 products:
-  - security-center
+  - threat-intelligence
 tags:
   - Phishing
   - AI
@@ -15,6 +15,7 @@ import { AvailableNotifications, Render, DashButton } from "~/components";
 
 <Render file="brand-protection-definition" product="security-center" />
 
+
 :::note[User permission]
 Access to Brand Protection is managed through [Cloudflare RBAC](/fundamentals/manage-members/roles/).
 
@@ -73,16 +74,16 @@ The browser will return to the **Monitored Logos** page, where you can access yo
 
 In this section, the dashboard displays:
 
-- **Domain overview** where you can request to [change categorization](/security-center/investigate/change-categorization/) and view the resolution history of your domain for up to seven days.
+- **Domain overview** where you can request to [change categorization](/threat-intelligence/investigate-portal/change-categorization/) and view the resolution history of your domain for up to seven days.
 - **WHOIS** that provides details about the date the domain was created, registrant and nameservers.
-- **Domain history** that provides information on the domain category and when it was last changed. Refer to [Investigate threats](/security-center/investigate/investigate-threats/) for more details.
+- **Domain history** that provides information on the domain category and when it was last changed. Refer to [Investigate threats](/threat-intelligence/investigate-portal/investigate-threats/) for more details.
 - **URL Reports** that provides information on any reported URL.
 
 To investigate a string query:
 
 1. Go to the **Monitor Strings** or **Monitor Logos** section to view all your queries.
 2. Select a monitored query to inspect all the domains that matched your query.
-3. Next to the domain, select **Domain** or **URL**. This will trigger a search on the [**Investigate**](/security-center/investigate/) section in a separate tab. URL scanner will also be triggered from **Brand Protection** through **Security Center** > **Investigate**. You will also have access to a report which will be generated automatically. The report will display screenshots of the matched domain, and the registrar of your domain.
+3. Next to the domain, select **Domain** or **URL**. This will trigger a search on the [**Investigate**](/threat-intelligence/investigate-portal/) section in a separate tab. URL scanner will also be triggered from **Brand Protection** through **Threat Intelligence** > **Investigate**. You will also have access to a report which will be generated automatically. The report will display screenshots of the matched domain, and the registrar of your domain.
 
 ## Report abuse
 
diff --git a/src/content/docs/security-center/changelog.mdx b/src/content/docs/threat-intelligence/changelog.mdx
similarity index 98%
rename from src/content/docs/security-center/changelog.mdx
rename to src/content/docs/threat-intelligence/changelog.mdx
index 1c925069539..81cff756495 100644
--- a/src/content/docs/security-center/changelog.mdx
+++ b/src/content/docs/threat-intelligence/changelog.mdx
@@ -3,7 +3,7 @@ pcx_content_type: changelog
 title: Changelog
 description: Track the latest updates and changes to Security Center features.
 products:
-  - security-center
+  - threat-intelligence
 sidebar:
   order: 13
 ---
diff --git a/src/content/docs/security-center/indicator-feeds.mdx b/src/content/docs/threat-intelligence/custom-indicator-feeds.mdx
similarity index 99%
rename from src/content/docs/security-center/indicator-feeds.mdx
rename to src/content/docs/threat-intelligence/custom-indicator-feeds.mdx
index 5340e416b2f..3c2ea19a0f0 100644
--- a/src/content/docs/security-center/indicator-feeds.mdx
+++ b/src/content/docs/threat-intelligence/custom-indicator-feeds.mdx
@@ -3,7 +3,7 @@ pcx_content_type: concept
 title: Custom Indicator Feeds
 description: Receive curated threat intelligence feeds from Cyber Defense Collaboration groups.
 products:
-  - security-center
+  - threat-intelligence
 tags:
   - REST API
 sidebar:
diff --git a/src/content/docs/security-center/get-started.mdx b/src/content/docs/threat-intelligence/get-started.mdx
similarity index 84%
rename from src/content/docs/security-center/get-started.mdx
rename to src/content/docs/threat-intelligence/get-started.mdx
index fa4e4df1958..cc4f9c7630e 100644
--- a/src/content/docs/security-center/get-started.mdx
+++ b/src/content/docs/threat-intelligence/get-started.mdx
@@ -3,7 +3,7 @@ pcx_content_type: get-started
 title: Get started
 description: Use Security Insights to scan your account for misconfigurations and vulnerabilities.
 products:
-  - security-center
+  - threat-intelligence
 sidebar:
   order: 2
 ---
@@ -21,6 +21,10 @@ Security Center scans your Cloudflare account configuration and identifies poten
 
 <Render file="setup" product="security-center" />
 
+:::note
+This section was formerly part of **Security Center**, which has been deprecated.
+:::
+
 ### Start a new scan
 
 To manually start a scan:
@@ -29,6 +33,10 @@ To manually start a scan:
 
    <DashButton url="/?to=/:account/security-center" />
 
+   :::note
+   The dashboard path is subject to change as the Security Center deprecation completes.
+   :::
+
 2. Select **Scan now**.
 
 :::note
diff --git a/src/content/docs/threat-intelligence/index.mdx b/src/content/docs/threat-intelligence/index.mdx
new file mode 100644
index 00000000000..a8c254c99af
--- /dev/null
+++ b/src/content/docs/threat-intelligence/index.mdx
@@ -0,0 +1,45 @@
+---
+title: Threat Intelligence
+pcx_content_type: overview
+description: Investigate threats, access threat intelligence APIs, protect your brand from impersonation, and leverage Cloudforce One.
+products:
+  - threat-intelligence
+sidebar:
+  order: 1
+head:
+  - tag: title
+    content: Overview
+---
+
+import { LinkButton } from "~/components";
+
+:::note
+This section was formerly known as **Security Center**. The Security Center dashboard entity has been deprecated, and its features have been reorganised under **Threat Intelligence** and [Application Security](/application-security/).
+:::
+
+Threat Intelligence brings together the tools you need to investigate threats, access intelligence APIs, protect your brand, manage indicator feeds, and leverage the Cloudforce One threat intelligence platform.
+
+## Main features
+
+- **[Investigate Portal](/threat-intelligence/investigate-portal/)** — Look up threat intelligence for IPs, domains, URLs, and AS numbers.
+- **[Brand Protection](/threat-intelligence/brand-protection/)** — Detect phishing domains and impersonation attempts targeting your brand.
+- **[Custom Indicator Feeds](/threat-intelligence/custom-indicator-feeds/)** — Receive curated threat intelligence feeds from Cyber Defense Collaboration groups.
+- **[Threat Intelligence APIs](/threat-intelligence/threat-intelligence-apis/)** — Query Cloudflare threat intelligence data programmatically.
+- **[Threat Intelligence Platform (Cloudforce One)](/threat-intelligence/threat-intelligence-platform/)** — Access Cloudflare threat intelligence reports, threat events, and automated security rules.
+
+<LinkButton variant="primary" href="/threat-intelligence/get-started/">
+	Get started
+</LinkButton>
+
+---
+
+## Availability
+
+Threat Intelligence features are available to customers on all plans, with advanced capabilities on higher-tier plans.
+
+If you have any comments, questions, or bugs to report, create a post in the [Cloudflare Community forum](https://community.cloudflare.com/c/security/security-center/65).
+
+## Limitations
+
+- Users with an [Administrator Read Only](/fundamentals/manage-members/roles/#account-scoped-roles) role cannot access Threat Intelligence features.
+- Only Cloudflare accounts with at least one Business or Enterprise zone (domain on your account), or accounts on the Teams Standard or Teams Enterprise plans, can manually start a new scan.
diff --git a/src/content/docs/security-center/investigate/change-categorization.mdx b/src/content/docs/threat-intelligence/investigate-portal/change-categorization.mdx
similarity index 99%
rename from src/content/docs/security-center/investigate/change-categorization.mdx
rename to src/content/docs/threat-intelligence/investigate-portal/change-categorization.mdx
index c2efde74687..9e12dca0de4 100644
--- a/src/content/docs/security-center/investigate/change-categorization.mdx
+++ b/src/content/docs/threat-intelligence/investigate-portal/change-categorization.mdx
@@ -3,7 +3,7 @@ pcx_content_type: how-to
 title: Change categorization
 description: Request domain categorization changes via the dashboard, Radar, or the API.
 products:
-  - security-center
+  - threat-intelligence
 sidebar:
   order: 4
 
diff --git a/src/content/docs/security-center/investigate/index.mdx b/src/content/docs/threat-intelligence/investigate-portal/index.mdx
similarity index 98%
rename from src/content/docs/security-center/investigate/index.mdx
rename to src/content/docs/threat-intelligence/investigate-portal/index.mdx
index f63c519b1be..d2a69262685 100644
--- a/src/content/docs/security-center/investigate/index.mdx
+++ b/src/content/docs/threat-intelligence/investigate-portal/index.mdx
@@ -3,7 +3,7 @@ pcx_content_type: overview
 title: Investigate
 description: Look up threat intelligence for IPs, domains, URLs, and AS numbers.
 products:
-  - security-center
+  - threat-intelligence
 sidebar:
   order: 6
 
diff --git a/src/content/docs/security-center/investigate/investigate-threats.mdx b/src/content/docs/threat-intelligence/investigate-portal/investigate-threats.mdx
similarity index 87%
rename from src/content/docs/security-center/investigate/investigate-threats.mdx
rename to src/content/docs/threat-intelligence/investigate-portal/investigate-threats.mdx
index 48ce56a091e..58e09dddde8 100644
--- a/src/content/docs/security-center/investigate/investigate-threats.mdx
+++ b/src/content/docs/threat-intelligence/investigate-portal/investigate-threats.mdx
@@ -3,7 +3,7 @@ pcx_content_type: how-to
 title: Investigate threats
 description: Search for IP, domain, URL, or ASN intelligence in Security Center or Radar.
 products:
-  - security-center
+  - threat-intelligence
 sidebar:
   order: 3
 
@@ -13,11 +13,11 @@ import { Render, DashButton } from "~/components"
 
 Users can investigate the details of an IP address, domain name, URL, or Autonomous System Number (ASN). You can find the Investigate feature in your Cloudflare account's Security Center and in [Cloudflare Radar](https://radar.cloudflare.com/scan).
 
-You can search with Investigate by [IP address](/security-center/investigate/investigate-threats/#ip-address), [domain](/security-center/investigate/investigate-threats/#domain), [URL](/security-center/investigate/investigate-threats/#url) and [AS number](/security-center/investigate/investigate-threats/#as-number).
+You can search with Investigate by [IP address](/threat-intelligence/investigate-portal/investigate-threats/#ip-address), [domain](/threat-intelligence/investigate-portal/investigate-threats/#domain), [URL](/threat-intelligence/investigate-portal/investigate-threats/#url) and [AS number](/threat-intelligence/investigate-portal/investigate-threats/#as-number).
 
 :::note
 
-Search methods are also available through the [API](/security-center/intel-apis/).
+Search methods are also available through the [API](/threat-intelligence/threat-intelligence-apis/).
 
 :::
 
@@ -40,7 +40,7 @@ When you search for a domain name, Cloudflare will provide an overview of the do
 
 For a detailed list of categories, refer to [Domain categories](/cloudflare-one/traffic-policies/domain-categories/).
 
-A domain can have multiple categories. Cloudflare displays both the parent category and the detailed child category. You can [request category changes](/security-center/investigate/change-categorization/) for a domain. Miscategorized domains can also request to have a category added. This request goes through an approval process with the Cloudflare team.
+A domain can have multiple categories. Cloudflare displays both the parent category and the detailed child category. You can [request category changes](/threat-intelligence/investigate-portal/change-categorization/) for a domain. Miscategorized domains can also request to have a category added. This request goes through an approval process with the Cloudflare team.
 
 As part of the domain search results, Cloudflare show the WHOIS details and a history of its category changes over time.
 
@@ -69,7 +69,7 @@ To search using a hash:
 
 When you search for a URL, Cloudflare will provide a list of recent scan reports for that specific URL, limited to the past 30 days. You can view previously generated reports or scan again to generate a new report.
 
-Different Cloudflare plans will have different [scan limitations](/security-center/investigate/scan-limits/).
+Different Cloudflare plans will have different [scan limitations](/threat-intelligence/investigate-portal/scan-limits/).
 
 If you want to scan a URL:
 
diff --git a/src/content/docs/security-center/investigate/scan-limits.mdx b/src/content/docs/threat-intelligence/investigate-portal/scan-limits.mdx
similarity index 97%
rename from src/content/docs/security-center/investigate/scan-limits.mdx
rename to src/content/docs/threat-intelligence/investigate-portal/scan-limits.mdx
index 4a87a3ad19d..53ba269baf6 100644
--- a/src/content/docs/security-center/investigate/scan-limits.mdx
+++ b/src/content/docs/threat-intelligence/investigate-portal/scan-limits.mdx
@@ -2,7 +2,7 @@
 pcx_content_type: concept
 title: Scan limits
 products:
-  - security-center
+  - threat-intelligence
 head: []
 description: Limits
 
diff --git a/src/content/docs/security-center/intel-apis/index.mdx b/src/content/docs/threat-intelligence/threat-intelligence-apis/index.mdx
similarity index 99%
rename from src/content/docs/security-center/intel-apis/index.mdx
rename to src/content/docs/threat-intelligence/threat-intelligence-apis/index.mdx
index 811abfb8c5c..efa344783f6 100644
--- a/src/content/docs/security-center/intel-apis/index.mdx
+++ b/src/content/docs/threat-intelligence/threat-intelligence-apis/index.mdx
@@ -3,7 +3,7 @@ pcx_content_type: navigation
 title: Threat Intelligence APIs
 description: Query Cloudflare threat intelligence data for IPs, domains, ASNs, and more.
 products:
-  - security-center
+  - threat-intelligence
 tags:
   - REST API
 sidebar:
@@ -12,7 +12,7 @@ sidebar:
 
 import { Details } from "~/components";
 
-Cloudflare provides a series of endpoints covering various areas of internet security and insights. Based on your Cloudflare plan type, the [limit](/security-center/intel-apis/limits/) of API calls will vary per month.
+Cloudflare provides a series of endpoints covering various areas of internet security and insights. Based on your Cloudflare plan type, the [limit](/threat-intelligence/threat-intelligence-apis/limits/) of API calls will vary per month.
 
 | Intelligence Endpoint                                                                                 | Definition                                                                                                                                                       |
 | ----------------------------------------------------------------------------------------------------- | ---------------------------------------------------------------------------------------------------------------------------------------------------------------- |
diff --git a/src/content/docs/security-center/intel-apis/limits.mdx b/src/content/docs/threat-intelligence/threat-intelligence-apis/limits.mdx
similarity index 97%
rename from src/content/docs/security-center/intel-apis/limits.mdx
rename to src/content/docs/threat-intelligence/threat-intelligence-apis/limits.mdx
index 6abc4462106..2831ba7e524 100644
--- a/src/content/docs/security-center/intel-apis/limits.mdx
+++ b/src/content/docs/threat-intelligence/threat-intelligence-apis/limits.mdx
@@ -2,7 +2,7 @@
 pcx_content_type: concept
 title: Limits
 products:
-  - security-center
+  - threat-intelligence
 description: Limits
 ---
 
diff --git a/src/content/docs/security-center/intel-apis/manage-miscategorization-reports.mdx b/src/content/docs/threat-intelligence/threat-intelligence-apis/manage-miscategorization-reports.mdx
similarity index 98%
rename from src/content/docs/security-center/intel-apis/manage-miscategorization-reports.mdx
rename to src/content/docs/threat-intelligence/threat-intelligence-apis/manage-miscategorization-reports.mdx
index b4927b1dd87..d265a42653b 100644
--- a/src/content/docs/security-center/intel-apis/manage-miscategorization-reports.mdx
+++ b/src/content/docs/threat-intelligence/threat-intelligence-apis/manage-miscategorization-reports.mdx
@@ -3,7 +3,7 @@ pcx_content_type: concept
 title: Manage miscategorization reports
 description: Submit domain miscategorization reports using the Cloudflare API.
 products:
-  - security-center
+  - threat-intelligence
 sidebar:
   order: 4
 ---
diff --git a/src/content/docs/security-center/cloudforce-one/cloudforce-one.mdx b/src/content/docs/threat-intelligence/threat-intelligence-platform/cloudforce-one.mdx
similarity index 90%
rename from src/content/docs/security-center/cloudforce-one/cloudforce-one.mdx
rename to src/content/docs/threat-intelligence/threat-intelligence-platform/cloudforce-one.mdx
index 6749f8a8b7e..30277bcb9ef 100644
--- a/src/content/docs/security-center/cloudforce-one/cloudforce-one.mdx
+++ b/src/content/docs/threat-intelligence/threat-intelligence-platform/cloudforce-one.mdx
@@ -3,7 +3,7 @@ pcx_content_type: navigation
 title: Cloudforce One
 description: Learn about Cloudflare Cloudforce One threat intelligence services.
 products:
-  - security-center
+  - threat-intelligence
 external_link: https://www.cloudflare.com/threat-intelligence/
 sidebar:
   order: 10
diff --git a/src/content/docs/security-center/cloudforce-one/index.mdx b/src/content/docs/threat-intelligence/threat-intelligence-platform/index.mdx
similarity index 99%
rename from src/content/docs/security-center/cloudforce-one/index.mdx
rename to src/content/docs/threat-intelligence/threat-intelligence-platform/index.mdx
index 636ca98ce1c..062b45016f4 100644
--- a/src/content/docs/security-center/cloudforce-one/index.mdx
+++ b/src/content/docs/threat-intelligence/threat-intelligence-platform/index.mdx
@@ -3,7 +3,7 @@ pcx_content_type: overview
 title: Cloudforce One
 description: Access Cloudflare threat intelligence, reports, and automated security rules.
 products:
-  - security-center
+  - threat-intelligence
 tags:
   - AI
   - AI Agents
diff --git a/src/content/docs/security-center/cloudforce-one/open-port-scanning.mdx b/src/content/docs/threat-intelligence/threat-intelligence-platform/open-port-scanning.mdx
similarity index 96%
rename from src/content/docs/security-center/cloudforce-one/open-port-scanning.mdx
rename to src/content/docs/threat-intelligence/threat-intelligence-platform/open-port-scanning.mdx
index 55fbf7081e5..3bbc7769a08 100644
--- a/src/content/docs/security-center/cloudforce-one/open-port-scanning.mdx
+++ b/src/content/docs/threat-intelligence/threat-intelligence-platform/open-port-scanning.mdx
@@ -3,7 +3,7 @@ pcx_content_type: how-to
 title: Open Port Scanning
 description: Scan your IP ranges for open ports and receive daily notifications about changes.
 products:
-  - security-center
+  - threat-intelligence
 sidebar:
   order: 11
   badge:
@@ -50,7 +50,7 @@ To configure Open Port Scanning, follow these steps:
     - **Frequency**: Enter the scan frequency in days.
     - **Ports**: Select the ports to scan. Choose among:
         - All
-        - Default (refer to [Default ports](/security-center/cloudforce-one/open-port-scanning/#default-ports) for a comprehensive list)
+        - Default (refer to [Default ports](/threat-intelligence/threat-intelligence-platform/open-port-scanning/#default-ports) for a comprehensive list)
         - List of specific ports
 2. **Scan IPs**: Initiate the scanning process. The system will analyze the specified IP ranges to identify any open ports.
 3. **Generate list of open ports**: Once the scan is complete, the API will generate a list of detected open ports for review and action.