Skip to main content
List all available Threat IOC (Indicator of Compromise) feeds in the system.
External DocumentationTo learn more, visit the Check Point Management documentation.

Parameters

ParameterDescription
FilterThe search expression to filter objects by. The provided text should be exactly the same as it would be given in SmartConsole Object Explorer.
The logical operators in the expression (‘AND’, ‘OR’) should be provided in capital letters.
The search involves both a IP search and a textual search in name, comment, tags etc.
LimitThe maximum number of results to return in the response.

Valid range is - 1 to 500.
OffsetThe pagination offset indicating the starting point for the next set of results.
Return All PagesAutomatically fetch all resources, page by page.

Example Output

{
	"objects": [
		{
			"uid": "f16bf59e-321d-422a-b9c4-99ae07a67804",
			"name": "example-updated",
			"type": "threat-ioc-feed",
			"domain": {
				"uid": "41e821a0-3720-11e3-aa6e-0800200c9fde",
				"name": "SMC User",
				"domain-type": "domain"
			},
			"icon": "ThreatPrevention/FileGlobe",
			"color": "black"
		},
		{
			"uid": "a83d37cf-3a22-4ad3-a2ea-c4d56f9b9c66",
			"name": "ttt",
			"type": "threat-ioc-feed",
			"domain": {
				"uid": "41e821a0-3720-11e3-aa6e-0800200c9fde",
				"name": "SMC User",
				"domain-type": "domain"
			},
			"icon": "ThreatPrevention/FileGlobe",
			"color": "black"
		}
	],
	"from": 1,
	"to": 2,
	"total": 2
}

Workflow Library Example

List Threat Ioc Feed with Check Point Management and Send Results Via Email
Workflow LibraryPreview this Workflow on desktop