Skip to content

SentinelOne#

SentinelOne_Hash_Blacklister#

Author: Joe Vasquez
License: AGPL-V3
Version: 1.0
Supported data types:
- thehive:case_artifact
Registration required: N/A
Subscription required: N/A
Free subscription: N/A
Third party service: N/A

Description#

Add SHA1 hash to SentinelOne Blacklist via API v2.1.

Configuration#

s1_console_url Console URL
Default value if not configured N/A
Type of the configuration item string
The configuration item can contain multiple values False
Is required True
s1_api_key API Key, don't forget this will expire!
Default value if not configured N/A
Type of the configuration item string
The configuration item can contain multiple values False
Is required True
s1_account_id Account ID
Default value if not configured N/A
Type of the configuration item string
The configuration item can contain multiple values False
Is required True
s1_blacklist_ostype OS type, must be one of the following: macos, windows, linux, or windows_legacy. Default is windows
Default value if not configured N/A
Type of the configuration item string
The configuration item can contain multiple values False
Is required False

Last update: October 21, 2022 15:12:23