App integrates with ReversingLabs TitaniumCloud APIs delivering targeted file and malware intelligence for threat identification, analysis, intelligence development, and threat hunting services
Supported Actions
- test connectivity: Validate the asset configuration for connectivity using supplied configuration
- yara create ruleset: TCA-0303 - Create a new YARA ruleset
- yara delete ruleset: TCA-0303 - Delete YARA ruleset
- yara get ruleset info: TCA-0303 - Get YARA ruleset info
- yara get ruleset text: TCA-0303 - Get YARA ruleset text
- get yara matches: TCA-0303 - Get a recordset of YARA ruleset matches in the specified time range
- yara retro enable hunt: TCA-0319 - Enable YARA retro hunt
- yara retro start hunt: TCA-0319 - Start YARA retro hunt for the specified ruleset
- yara retro check status: TCA-0319 - Check the retro hunt status for the specified ruleset
- yara retro cancel hunt: TCA-0319 - Cancel the retro hunt for the specified ruleset
- get yara retro matches: TCA-0319 - Get a recordset of YARA ruleset matches in the specified time range
- imphash similarity: TCA-0302 - Get a a list of all available SHA1 hashes for files sharing the same import hash (imphash)
- advanced search: TCA-0320 - Search for hashes using multi-part search criteria
- av scanners: TCA-0103 - Retrieve AV Scanner data from TitaniumCloud
- file reputation: TCA-0101 - Queries for file reputation info
- file analysis: TCA-0104 - Retrieve File Analysis by hash data from TitaniumCloud
- functional similarity: TCA-0301 - Retrieve a list of functionally similar hashes to the provided one
- url reputation: TCA-0403 - Queries URL Threat Intelligence
- get downloaded files: TCA - 0403 - Get files downloaded from url
- get latest url analysis feed: TCA - 0403 - Get latest url analysis feed
- get url analysis feed from date: TCA - 0403 - Get url analysis feed from date
- analyze url: TCA-0404 - Analyze a given URL
- uri statistics: TCA-0402 - Retrieve the number of MALICIOUS, SUSPICIOUS and KNOWN files associated with a specific URI
- uri index: TCA-0401 - Retrieve a list of all available file hashes associated with a given URI
- submit for dynamic analysis: TCA-0207 - Submit an existing sample for dynamic analysis
- submit url for dynamic analysis: TCA-0207 - Submit an url sample for dynamic analysis
- dynamic analysis results: TCA-0106 - Retrieve dynamic analysis results
- dynamic url analysis results: TCA-0106 - Retrieve dynamic analysis results for url
- reanalyze file: TCA-0205 - Reanalyze sample
- upload file: TCA-0202 - Upload file to TitaniumCloud
- get file: TCA-0201 - Download a sample from TitaniumCloud
- get network reputation: Network Reputation API
- get list user overrides: List User Overrides
- get list user overrides aggregated: Returns a list of overrides that the user has made
- network reputation user override: Network Reputation User Override
- file reputation user override: File Reputation User Override
- list active file reputation user overrides: List Active File Reputation User Overrides
- customer daily usage: Check daily usage of ReversingLabs API
- customer dayrange usage: Check ReversingLabs API usage for specified time range (in days)
- customer monthly usage: Check Monthly usage of ReversingLabs API
- customer month range usage: Check ReversingLabs API usage for specified time range (in months)
- customer yara api usage: Check Yara usage on ReversingLabs API
- customer quota limits: Returns current quota limits for APIs accessible to the authenticated user or users belonging to the authenticated user's company
- get domain report: API returns threat intelligence data for the submitted domain
- get domain downloaded files: Retrieve a list of files downloaded from the submitted domain
- get urls from domain: API provides a list of URLs associated with the requested domain
- get resolutions from domain: API provides a list of domain-to-IP mappings for the requested domain
- get related domains: API provides a list of domains that have the same top parent domain as the requested domain
- get ip report: API returns threat intelligence data for the submitted ip address
- get ip downloaded files: Retrieve a list of files downloaded from the submitted IP address
- get urls from ip: API provides a list of URLs associated with the requested IP address
- get resolutions from ip: API provides a list of IP-to-domain mappings for the requested IP address