Latest Version 1.0.1
September 21, 2021
Sixgill Darkfeed
Sixgill's premium underground intelligence collection capabilities, real-time collection, and advanced warning about IOCs help you keep your edge against unknown threats
Built by
Compatibility
SOAR On-Prem, SOAR Cloud
Platform Version: 8.4, 8.0, 7.2, 7.1, 7.0, 6.4, 6.3, 6.2, 6.1, 6.0, 5.5, 5.4, 5.3, 5.2, 5.1, 5.0, 4.10, 4.9
Rating
0
(0)
Log in to rate this app
Support
Not Supported
Sixgill's premium underground intelligence collection capabilities, real-time collection, and advanced warning about IOCs help you keep your edge against unknown threats
Supported Actions
- test connectivity: Validate the asset configuration for connectivity using supplied configuration
- on poll: Scheduled/Automated ingestion of all the new Darkfeed IOCs detected since the last ingestion
- enrich ip: Query the Sixgill Darkfeed for the specified IP and receive all the IOCs matching that IP
- enrich url: Query the Sixgill Darkfeed for the specified URL and receive all the IOCs matching that URL
- enrich domain: Query the Sixgill Darkfeed for the specified domain and receive all the IOCs matching that domain
- enrich hash: Query the Sixgill Darkfeed for the specified hash and receive all the IOCs matching that hash
- enrich post id: Query the Sixgill Darkfeed for the specified Sixgill Post ID (i.e. unique identifier of a specific post shared in the underground) and receive all the IOCs shared in that post
- enrich threat actor: Query the Sixgill Darkfeed for the specified threat actor and receive all the IOCs shared by that threat actor
Categories
SIEM
Created By
SOAR Community
Source Code
GitHub(Opens new window)Type
connector
Downloads
495
Licensing
Apache License 2.0(Opens new window)Splunk Answers
Ask a question about this app listing(Opens new window)Resources
Log in to report this app listing