Analyze Domain Indicators with Wildfire Icon
工作流
Analyze Domain Indicators with Wildfire
此工作流使用 Cortex 的 VirusTotal Get Report 分析器获取指定域名的情报数据,并使用 Palo Alto Wildfire 分析数据。
上传者:admin@tanze.io
版本:0.1.1
domain, intel, wildfire, cortex
描述

步骤 (21)

Get Domain
类型: Api Trigger
Run Analyzer
类型: Action
插件: Cortex
Slice 1 Created with Sketch.
Check Job Status
类型: Loop Begin
Get Job Details
类型: Action
插件: Cortex
Check Job Status End
类型: Loop End
Get Job Report
类型: Action
插件: Cortex
Create Arrays
类型: Action
插件: Python 2 Script
Slice 1 Created with Sketch.
URL Artifacts
类型: Loop Begin
URL
类型: Artifact
URL Artifacts End
类型: Loop End
Hashes
类型: Artifact
Create Issue
类型: Action
插件: JIRA
Delete Job
类型: Action
插件: Cortex
Slice 1 Created with Sketch.
Wildfire Analysis
类型: Loop Begin
Submit a URL
类型: Action
插件: Palo Alto Wildfire
Sleep
类型: Action
插件: Sleep
Get Verdict
类型: Action
插件: Palo Alto Wildfire
decision icon Created with Sketch.
Malicious Verdict
类型: Decision
路径:Malicious
Get URLs Report
类型: Action
插件: Palo Alto Wildfire
路径:Malicious
Malicious URL Report
类型: Artifact
路径:Malicious
Wildfire Analysis End
类型: Loop End