![]() Copy Human Readable Output # AlienVault OTX v2 - Results for Hostname query # Alexa ![]() } Copy Human Readable Output # AlienVault OTX v2 - Results for ips query # ASN The type of the destination of the relationship. The type of the source of the relationship. The geolocation where the IP address is located, in the format: latitude:longitude. The country where the IP address is located. The autonomous system name for the IP address. If the threshold is not specified, the default indicator threshold is used, which is configured in the instance settings. If the number of pulses is bigger than the threshold, the IP address is considered as malicious. You can execute these commands from the Cortex XSOAR CLI, as part of an automation, or in a playbook.Īfter you successfully execute a command, a DBot message appears in the War Room with the command details. Reliability of the source providing the intelligence data.Ĭreate relationships between indicators as part of Enrichment.Ĭlick Test to validate the URLs, token, and connection. If not provided, no relationships will be added. Maximum number of relationships for indicators The minimum number of pulses to consider the indicator as malicious. ![]() Navigate to Settings > Integrations > Servers & Services.Ĭlick Add instance to create and configure a new integration instance. Configure AlienVault OTX v2 on Cortex XSOAR # ![]() Query Indicators of Compromise in AlienVault OTX. This Integration is part of the AlienVault OTX Pack. ![]()
0 Comments
Leave a Reply. |