Welcome to the new Splunkbase! To return to the old Splunkbase, click here.
Collections
Apps
Submit an App
ZETAlytics app icon

ZETAlytics

This App implements investigative actions that query the ZETAlytics security feed and APIs

Built by srv-stage-community
soar product badge
Latest Version 1.1.0
September 17, 2021
Compatibility
Not Available
Platform Version: 5.5, 5.4, 5.3, 5.2, 5.1, 5.0, 4.10, 4.9, 4.8, 4.7, 4.6, 4.5, 4.2, 4.1, 4.0
Rating

0

(0)

Log in to rate this app
Support
ZETAlytics support icon
Not Supported
Ranking

#2

in Reputation
This App implements investigative actions that query the ZETAlytics security feed and APIs

Supported Actions

  • test connectivity: Validate the asset configuration for connectivity using supplied configuration
  • domain reputation: Queries domain info
  • ip reputation: Queries IP info
  • search keyword: Search for domain names containing a keyword
  • reverse nameserver: Get a list of domains and hostnames for an authoritative nameserver
  • whois domain: Get whois information for the given domain
  • reverse email domain: Return a list of domains registered with the given email domain
  • lookup ip: Query ZETAlytics APIs for an IP address
  • lookup domain: Query ZETAlytics APIs for a domain name
  • query d8s: Query the ZETAlytics D8s service
  • on poll: Callback action to ingest security feed items
  • reverse email: Find domains with this email address in their Whois record or SOA email records
  • ip dns history: Find domains that have resolved to this IP address
  • domain dns history: Find IP addresses this domain has resolved to
  • lookup nameserver: Get information for an authoritative nameserver

Categories

Created By

srv-stage-community

Source Code

Type

connector
0

Licensing

Splunk Answers

Resources

Login to report this app listing