Welcome to the new Splunkbase! To return to the old Splunkbase, click here.
Collections
Apps
Submit an App
Reversinglabs TitaniumCloud v2 app icon

Reversinglabs TitaniumCloud v2

App integrates with ReversingLabs TitaniumCloud APIs delivering targeted file and malware intelligence for threat identification, analysis, intelligence development, and threat hunting services

Built by SOAR Community
soar product badge
Latest Version 1.4.0
May 28, 2024
Compatibility
Not Available
Platform Version: 6.4, 6.3, 6.2, 6.1
Rating

0

(0)

Log in to rate this app
Support
Reversinglabs TitaniumCloud v2 support icon
Developer Supported connector
Learn more
Ranking

#32

in Reputation
App integrates with ReversingLabs TitaniumCloud APIs delivering targeted file and malware intelligence for threat identification, analysis, intelligence development, and threat hunting services

Supported Actions

  • test connectivity: Validate the asset configuration for connectivity using supplied configuration
  • yara create ruleset: TCA-0303 - Create a new YARA ruleset
  • yara delete ruleset: TCA-0303 - Delete YARA ruleset
  • yara get ruleset info: TCA-0303 - Get YARA ruleset info
  • yara get ruleset text: TCA-0303 - Get YARA ruleset text
  • get yara matches: TCA-0303 - Get a recordset of YARA ruleset matches in the specified time range
  • yara retro enable hunt: TCA-0319 - Enable YARA retro hunt
  • yara retro start hunt: TCA-0319 - Start YARA retro hunt for the specified ruleset
  • yara retro check status: TCA-0319 - Check the retro hunt status for the specified ruleset
  • yara retro cancel hunt: TCA-0319 - Cancel the retro hunt for the specified ruleset
  • get yara retro matches: TCA-0319 - Get a recordset of YARA ruleset matches in the specified time range
  • imphash similarity: TCA-0302 - Get a a list of all available SHA1 hashes for files sharing the same import hash (imphash)
  • advanced search: TCA-0320 - Search for hashes using multi-part search criteria
  • av scanners: TCA-0103 - Retrieve AV Scanner data from TitaniumCloud
  • file reputation: TCA-0101 - Queries for file reputation info
  • file analysis: TCA-0104 - Retrieve File Analysis by hash data from TitaniumCloud
  • functional similarity: TCA-0301 - Retrieve a list of functionally similar hashes to the provided one
  • url reputation: TCA-0403 - Queries URL Threat Intelligence
  • get downloaded files: TCA - 0403 - Get files downloaded from url
  • get latest url analysis feed: TCA - 0403 - Get latest url analysis feed
  • get url analysis feed from date: TCA - 0403 - Get url analysis feed from date
  • analyze url: TCA-0404 - Analyze a given URL
  • uri statistics: TCA-0402 - Retrieve the number of MALICIOUS, SUSPICIOUS and KNOWN files associated with a specific URI
  • uri index: TCA-0401 - Retrieve a list of all available file hashes associated with a given URI
  • submit for dynamic analysis: TCA-0207 - Submit an existing sample for dynamic analysis
  • submit url for dynamic analysis: TCA-0207 - Submit an url sample for dynamic analysis
  • dynamic analysis results: TCA-0106 - Retrieve dynamic analysis results
  • dynamic url analysis results: TCA-0106 - Retrieve dynamic analysis results for url
  • reanalyze file: TCA-0205 - Reanalyze sample
  • upload file: TCA-0202 - Upload file to TitaniumCloud
  • get file: TCA-0201 - Download a sample from TitaniumCloud
  • get network reputation: Network Reputation API
  • get list user overrides: List User Overrides
  • get list user overrides aggregated: Returns a list of overrides that the user has made
  • network reputation user override: Network Reputation User Override
  • file reputation user override: File Reputation User Override
  • list active file reputation user overrides: List Active File Reputation User Overrides
  • customer daily usage: Check daily usage of ReversingLabs API
  • customer dayrange usage: Check ReversingLabs API usage for specified time range (in days)
  • customer monthly usage: Check Monthly usage of ReversingLabs API
  • customer month range usage: Check ReversingLabs API usage for specified time range (in months)
  • customer yara api usage: Check Yara usage on ReversingLabs API
  • customer quota limits: Returns current quota limits for APIs accessible to the authenticated user or users belonging to the authenticated user's company
  • get domain report: API returns threat intelligence data for the submitted domain
  • get domain downloaded files: Retrieve a list of files downloaded from the submitted domain
  • get urls from domain: API provides a list of URLs associated with the requested domain
  • get resolutions from domain: API provides a list of domain-to-IP mappings for the requested domain
  • get related domains: API provides a list of domains that have the same top parent domain as the requested domain
  • get ip report: API returns threat intelligence data for the submitted ip address
  • get ip downloaded files: Retrieve a list of files downloaded from the submitted IP address
  • get urls from ip: API provides a list of URLs associated with the requested IP address
  • get resolutions from ip: API provides a list of IP-to-domain mappings for the requested IP address

Categories

Created By

SOAR Community

Source Code

Type

connector

Downloads

288

Licensing

Splunk Answers

Resources

Login to report this app listing