Welcome to the new Splunkbase! To return to the old Splunkbase, click here.
Collections
Apps
Submit an App
PolySwarm app icon

PolySwarm

This app integrates with PolySwarm to implement investigate actions

Built by srv-stage-community
soar product badge
Latest Version 1.0.1
September 17, 2021
Compatibility
Not Available
Platform Version: 5.5, 5.4, 5.3, 5.2, 5.1, 5.0, 4.10, 4.9, 4.8, 4.7, 4.6, 4.5, 4.2
Rating

0

(0)

Log in to rate this app
Support
PolySwarm support icon
Not Supported
Ranking

#2

in Reputation
This app integrates with PolySwarm to implement investigate actions

Supported Actions

  • test connectivity: Validate the asset configuration for connectivity using the supplied configuration
  • file reputation: Queries Polyswarm for file reputation info
  • url reputation: Queries Polyswarm for url reputation info
  • domain reputation: Queries Polyswarm for Domain reputation info
  • ip reputation: Queries Polyswarm for IP reputation info
  • get file: Downloads a file from Polyswarm and adds it to the vault
  • get report: Lookup results from UUID
  • detonate file: Upload a file to Polyswarm and retrieve analysis results
  • detonate url: Load a URL to Polyswarm and retrieve analysis results

Categories

Created By

srv-stage-community

Source Code

Type

connector
0

Licensing

Splunk Answers

Resources

Login to report this app listing