SinkDB#

Author: Mark Kikta, RedLegg Cybersecurity Solutions
License: AGPL-V3
Version: 1.1
Supported observables types:
- ip
- domain
- fqdn
- mail
Registration required: N/A
Subscription required: N/A
Free subscription: N/A
Third party service: N/A

Description#

Check if ip is sinkholed via the new sinkdb.abuse.ch HTTPS API. Original analyzer can be found at https://github.com/BSI-CERT-Bund/sinkdb-analyzer

Configuration#

key	Define the HTTPS API Key
Default value if not configured	N/A
Type of the configuration item	string
The configuration item can contain multiple values	False
Is required	True

Templates samples for TheHive#

No template samples to display.