Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Passing arbitrary data from TheHive to analyzer #1120

Closed
janwychowaniak opened this issue Sep 13, 2019 · 2 comments
Closed

Passing arbitrary data from TheHive to analyzer #1120

janwychowaniak opened this issue Sep 13, 2019 · 2 comments

Comments

@janwychowaniak
Copy link

Request Type

Feature Request

Hello.
What I seek to accomplish is to find a way to pass arbitrary JSON-formatted information via TheHive API, so that it will later end up in a job report from a custom Cortex analyzer I wrote.
I have stumbled upon some description of a possibility to allow arbitrary parameters for a Cortex job (TheHive-Project/Cortex#86), but that's with using the Cortex API, I guess.
Kind regards.
@b00lpy
Copy link

b00lpy commented Sep 16, 2019

I don't really know what's you final usage of this feature, but probably it's easiest if you write a responder which simply extracts the CASE attribute _id, and starting from this you can pull out via API every information you want that's related with the case from whom you executed the responder.

Hope this helps in the meantime :)

@janwychowaniak
Copy link
Author

Ok, thank you very much for the suggestion. I will do some research towards this way. BR.

@rriclet rriclet closed this as completed Mar 4, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@rriclet @janwychowaniak @b00lpy