Latest Version 1.1.0
September 17, 2021
ZETAlytics
This App implements investigative actions that query the ZETAlytics security feed and APIs
Built by srv-stage-community
Compatibility
SOAR On-Prem
Platform Version: 5.5, 5.4, 5.3, 5.2, 5.1, 5.0, 4.10, 4.9, 4.8, 4.7, 4.6, 4.5, 4.2, 4.1, 4.0
Rating
0
(0)
Log in to rate this app
Support
Not Supported
Ranking
#2
in Reputation
This App implements investigative actions that query the ZETAlytics security feed and APIs
Supported Actions
- test connectivity: Validate the asset configuration for connectivity using supplied configuration
- domain reputation: Queries domain info
- ip reputation: Queries IP info
- search keyword: Search for domain names containing a keyword
- reverse nameserver: Get a list of domains and hostnames for an authoritative nameserver
- whois domain: Get whois information for the given domain
- reverse email domain: Return a list of domains registered with the given email domain
- lookup ip: Query ZETAlytics APIs for an IP address
- lookup domain: Query ZETAlytics APIs for a domain name
- query d8s: Query the ZETAlytics D8s service
- on poll: Callback action to ingest security feed items
- reverse email: Find domains with this email address in their Whois record or SOA email records
- ip dns history: Find domains that have resolved to this IP address
- domain dns history: Find IP addresses this domain has resolved to
- lookup nameserver: Get information for an authoritative nameserver
Categories
Reputation
Created By
srv-stage-community
Source Code
GitHub(Opens new window)Type
connector
Splunk Answers
Ask a question about this app listing(Opens new window)Resources
Log in to report this app listing