Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Cisco Umbrella Investigate Analyzer [FR] #583

Closed
christian-taillon opened this issue Jan 3, 2020 · 1 comment
Closed

Cisco Umbrella Investigate Analyzer [FR] #583

christian-taillon opened this issue Jan 3, 2020 · 1 comment
Labels
category:feature-request Issue is related to a feature request

Comments

@christian-taillon
Copy link

Currently, an analyzer is supported for Cisco Umbrellas Report: Security Activity Report.
https://docs.umbrella.com/umbrella-api/docs/security-activity-report

A more appropriate API would be the investigate API which can provide Threat Intelligence on observables.

Referenced API Documentation and Examples:
https://github.com/opendns/investigate-examples/blob/master/scripts.py
https://docs.umbrella.com/investigate-api/docs

This would be more useful to power Cortex and could replace the current Umbrella Analyzer (or complement it)

Referenced Analyzer
/master/analyzers/Umbrella
@christian-taillon christian-taillon added the category:feature-request Issue is related to a feature request label Jan 3, 2020
@christian-taillon
Copy link
Author

Put in a request for teamate. I just found the Investigate Analyzer however which is what was requested.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
category:feature-request Issue is related to a feature request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@christian-taillon