ESET Threat Intelligence
App Vendor: ESET
App Category: Data Enrichment & Threat Intelligence
Connector Version: 1.0.0
API Version: 1.16
About App
ESET Threat Intelligence is a service that can predict real-time threats targeting businesses. They also provide threat feed. With API we can upload malicious files and hashes for sandboxing and generate reports.
The ESET Threat Intelligence app is configured with the Orchestrate application to perform the following actions:
Action Name | Description |
|---|---|
Get report | This action retrieves the report using the report ID. |
Search Hash | This action performs a search to confirm if the given hash is already present in the ESET Threat Intelligence or not. |
Upload File | This action uploads a file for sandboxing and generating its report. |
Upload Hash | This action uploads hash to ESET Threat Intelligence. Supported hash types are MD5, SHA1 or SHA256 |
Generate PDF report | This action generates a PDF report for any hash file. This is applicable only for reports with finished status. |
Configuration Parameters
The ESET Threat Intelligence app is configured with the Orchestrate application to perform the following actions:
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Username | Enter the username for logging into ESET Threat Intelligence. | Text | Required | |
Password | Enter the password for logging into ESET Threat Intelligence. | Password | Required | |
Verify | Choose to verify or skip the TLS certificate verification. | Boolean | Optional | Allowed values:
Default value: No |
Action: Get Report
This action retrieves the report using the report ID.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Report ID | Enter the unique Report ID to retrieve the report. Example: "testreport882" | Text | Required |
Example Request
[
{
"report_id": "testreport882"
}
]Action: Search Hash
This action performs a search to confirm if the given hash is already present in the ESET Threat intelligence or not.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Search Hash | Enter the hash value. Example: "MD5" | Text | Required | Allowed values:
|
Example Request
[
{
"hash": "MD5"
}
]Action: Upload File
This action uploads a file for sandboxing and generating its report.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
File path | Enter the file path. Example: "/directory/reports/statusReport" | Text | Required |
Example Request
[
{
"file_path": "/directory/reports/statusReport"
}
]Action: Upload Hash
This action uploads hash to ESET Threat Intelligence. Supported hash are MD5, SHA1 or SHA256.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Hash | Enter the hash to upload. Example: "MD5" | Text | Required | Allowed values:
|
Example Request
[
{
"hash": "MD5"
}
]Action: Generate PDF report
This action generates a PDF report for any hash file. This is applicable only for reports with finished status.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Report ID | Enter the unique report ID. Example: "Samplereport123" | Text | Required |
Example Request
[
{
"report_id": "Samplereport123"
}
]