Triage#
README
Triage Sandbox analyzer#
Triage Sandbox is a commercial malware sandbox that let's you run malware in a safe way.
You can read more about the underlying solutions at: https://hatching.io/
Thus this analyzer requires you to have a commercial license.
FAQ#
Q: There is a free tier as well, why is that not part of this analyzer?#
This was done because Triage is an affordable solutions that you should support!#
Triage#
Author: Mikael Keri
License: AGPL-V3
Version: 1.0
Supported observables types:
- ip
- url
- file
Registration required: True
Subscription required: True
Free subscription: False
Third party service: https://tria.ge
Description#
Submit artifacts to the Triage sandbox service. This analyzer requires a paid subscription
Configuration#
| api_key | API key |
|---|---|
| Default value if not configured | N/A |
| Type of the configuration item | string |
| The configuration item can contain multiple values | False |
| Is required | True |
| timeout | Sandbox run timeout in seconds (default: 200) |
|---|---|
| Default value if not configured | N/A |
| Type of the configuration item | string |
| The configuration item can contain multiple values | False |
| Is required | False |
| zip_pw | Zip archive password |
|---|---|
| Default value if not configured | N/A |
| Type of the configuration item | string |
| The configuration item can contain multiple values | False |
| Is required | False |
Templates samples for TheHive#
