mirror of
https://github.com/valitydev/Cortex-Analyzers.git
synced 2024-11-06 17:15:21 +00:00
35 lines
988 B
JSON
35 lines
988 B
JSON
{
|
|
"name": "Crowdstrike Falcon Custom IOC API",
|
|
"version": "1.0",
|
|
"author": "Michael",
|
|
"url": "https://www.crowdstrike.com/blog/tech-center/import-iocs-crowdstrike-falcon-host-platform-via-api/",
|
|
"license": "MIT",
|
|
"description": "Submit observables to the Crowdstrike Falcon Custom IOC api",
|
|
"dataTypeList": ["thehive:alert","thehive:case_artifact"],
|
|
"command": "FalconCustomIOC/FalconCustomIOC.py",
|
|
"baseConfig": "FalconCustomIOC",
|
|
"configurationItems": [
|
|
{
|
|
"name": "falconapi_url",
|
|
"description": "Crowdstrike Falcon host url",
|
|
"type": "string",
|
|
"multi": false,
|
|
"required": true
|
|
},
|
|
{
|
|
"name": "falconapi_user",
|
|
"description": "Crowdstrike Falcon query api user",
|
|
"type": "string",
|
|
"multi": false,
|
|
"required": true
|
|
},
|
|
{
|
|
"name": "falconapi_key",
|
|
"description": "Crowdstrike Falcon query api key",
|
|
"type": "string",
|
|
"multi": false,
|
|
"required": true
|
|
}
|
|
]
|
|
}
|