Details
| Author | Xavier Xavier, SANS ISC |
| Version | 1.0 |
| License | AGPL-V3 |
| Website | https://github.com/xme/thehive/Cortex-Analyzers |
| Requires Registration | No |
| Requires Subscription | No |
| Free Subscription Available | Yes |
| DataType Supported | ip |
| Service Homepage | DShield_lookup |
Description
Query the SANS ISC DShield API to check for an IP address reputation.
Configuration
| Name | Description |
Additional details from the README file:
DShield is a community-based collaborative firewall log correlation system. It receives logs from volunteers worldwide and uses them to analyze attack trends.
The analyzer comes in just one analyzer that returns info of submitted ip.
No configuration is required.