LupovisProwl#
README
LupovisProwlAnalyzer#
Overview#
The LupovisProwlAnalyzer is an analyzer for TheHive that integrates with the Lupovis Prowl API to evaluate the reputation of IP addresses
Features#
- IP Reputation Analysis: Checks if an IP address is linked to malicious activities.
- Detailed Reporting: Generates both detailed and summary reports for analysis results.
- Flexible Configuration: Supports configuration of API keys and proxy settings.
API Key#
API Key: Obtain an API key from Lupovis Prowl.
Reporting#
The analyzer generates two types of reports:
-
Long Report (long.html): Provides a detailed view of the analysis result.
-
Short Report (short.html): Shows a concise summary using taxonomies.
License#
This project is licensed under the AGPL-V3 License.
Author#
Name: Lyle Docherty
LupovisProwl_GetIPReputation#
Author: Lyle Docherty
License: AGPL-V3
Version: 1.1
Supported observables types:
- ip
Registration required: True
Subscription required: True
Free subscription: N/A
Third party service: https://prowl.lupovis.io
Description#
Analyzer for IP reputation using Lupovis Prowl API
Configuration#
| prowl_api_key | API key for Lupovis Prowl |
|---|---|
| Default value if not configured | |
| Type of the configuration item | string |
| The configuration item can contain multiple values | False |
| Is required | True |
Templates samples for TheHive#
No template samples to display.