CIRCLPassiveDNS#
README
CIRCLPassiveDNS#
Check CIRCL's Passive DNS for a given domain.
This analyzer comes in only one flavor.
Requirements#
Access to CIRCL Passive DNS is only allowed to trusted partners in Luxembourg and abroad. Contact CIRCL if you would like access. Include your affiliation and the foreseen use of the Passive DNS data.
If the CIRCL positively answers your access request, you'll obtain a username and password which are needed to make the analyzer work.
supply your username as the value for the user parameter and your password
as the value for the password parameter.
CIRCLPassiveDNS#
Author: Nils Kuhnert, CERT-Bund
License: AGPL-V3
Version: 2.0
Supported observables types:
- domain
- url
- ip
Registration required: True
Subscription required: True
Free subscription: True
Third party service: https://www.circl.lu/services/passive-dns/
Description#
Check CIRCL's Passive DNS for a given domain or URL.
Configuration#
| user | Username |
|---|---|
| Default value if not configured | N/A |
| Type of the configuration item | string |
| The configuration item can contain multiple values | False |
| Is required | True |
| password | Password |
|---|---|
| Default value if not configured | N/A |
| Type of the configuration item | string |
| The configuration item can contain multiple values | False |
| Is required | True |
Templates samples for TheHive#
