ANY.RUN

This app enables you to detonate files and URLs to ANY.RUN Sandbox for analysis, retrieve detailed reports, and obtain information about IoCs from the ANY.RUN Threat Intelligence Lookup database

Supported Actions

• test connectivity: Validate the asset configuration for connectivity using supplied configuration
• get analysis verdict: Get the verdict of a specific analysis
• search analysis history: Get reports of a specific URL or File hash analysis from your history
• get reputation: Check URL/IP/Domain/File reputation
• get report: Get detailed JSON report for analysis
• get report stix: Get detailed STIX report for analysis
• get report misp: Get detailed MISP report for analysis
• get report html: Get detailed HTML report for analysis
• get iocs: Get list of IoCs for analysis
• detonate url windows: Detonate a URL for analysis using Windows VM
• detonate url linux: Detonate a URL for analysis using Linux VM
• detonate url android: Detonate a URL for analysis using Android VM
• detonate file windows: Detonate a file from Vault
• detonate file linux: Detonate a file from Vault
• detonate file android: Detonate a file from Vault
• get intelligence: Make a query to the ANY.RUN Threat Intelligence database using flexible searches for Indicators of Compromise (IOCs), Indicators of Attack(IOAs), and Indicators of Behavior (IOBs) to investigate and gather extensive and in-depth information on cyber threats
• delete analysis: Delete an analysis
• download pcap: Download a pcap file