Extracts IP addresses on block lists from AbuseIPDB, and Populates Indicators accordingly.
AbuseIPDB
- Details
- Content
- Dependencies
- Version History
Central repository to report and identify IP addresses that have been associated with malicious activity online. Check the Detailed Information section for more information on how to configure the integration.
Automations
| Name | Description |
|---|---|
| AbuseIPDBPopulateIndicators |
Integrations
| Name | Description |
|---|---|
| AbuseIPDB | Central repository to report and identify IP addresses that have been associated with malicious activity online. Check the Detailed Information section for more information on how to configure the integration. |
Automations
| Name | Description |
|---|---|
| AbuseIPDBPopulateIndicators | Extracts IP addresses on block lists from AbuseIPDB, and Populates Indicators accordingly. |
Integrations
| Name | Description |
|---|---|
| AbuseIPDB | Central repository to report and identify IP addresses that have been associated with malicious activity online. Check the Detailed Information section for more information on how to configure the integration. |
Required Content Packs (1)
| Pack Name | Pack By |
|---|---|
| Base | By: Cortex XSOAR |
Optional Content Packs (0)
| Pack Name | Pack By |
|---|
All level dependencies (1)
| Pack Name | Pack By |
|---|---|
| Base | By: Cortex XSOAR |
1.0.31 - 1602991 (November 6, 2024)
1.0.30 - 752611 (January 9, 2024)
- 31946
- 32040
Download
Integrations
AbuseIPDB
- Added more outputs to the ip and abuseipdb-check-cidr-block commands. The following outputs were added:
- IP.Geo.CountryCode
- AbuseIPDB.IP.Geo.CountryCode
- AbuseIPDB.IP.Hostnames
- AbuseIPDB.IP.IpVersion
- AbuseIPDB.IP.IsPublic
- AbuseIPDB.IP.IsTor
- AbuseIPDB.IP.IsWhitelisted
- AbuseIPDB.IP.LastReportedAt
- AbuseIPDB.IP.NumDistinctUsers
- Updated the Docker image to: demisto/python3:3.10.13.83255.
- 31946
- 32040
Download
1.0.29 - 6883610 (November 14, 2023)
- 30868
- 30080
Download
Integrations
AbuseIPDB
- Added the Disable reputation lookups for private IP addresses integration parameter, which enables you to save API calls to AbuseIPDB for private IP addresses.
- Added the override_private_lookup argument to the ip command.
- Updated the Docker image to: demisto/python3:3.10.13.80014.
- 30868
- 30080
Download
PUBLISHER
PLATFORMS
Cortex XSOARCortex XSIAM
INFO
| Certification | Certified | Read more |
| Supported By | Cortex | |
| Created | November 9, 2020 | |
| Last Release | November 14, 2024 |
WORKS WITH THE FOLLOWING INTEGRATIONS:
