List Threat IOC Feed
Lists all available Threat IOC (Indicator of Compromise) feeds in the system.
Parameters
| Parameter | Description |
|---|---|
| Filter | Search expression to filter objects by. The provided text should be exactly the same as it would be given in SmartConsole Object Explorer. The logical operators in the expression ('AND', 'OR') should be provided in capital letters. The search involves both a IP search and a textual search in name, comment, tags etc. |
| Limit | The maximal number of returned results. |
| Offset | Number of the results to initially skip. |
Example Output
{
"objects": [
{
"uid": "f16bf59e-321d-422a-b9c4-99ae07a67804",
"name": "example-updated",
"type": "threat-ioc-feed",
"domain": {
"uid": "41e821a0-3720-11e3-aa6e-0800200c9fde",
"name": "SMC User",
"domain-type": "domain"
},
"icon": "ThreatPrevention/FileGlobe",
"color": "black"
},
{
"uid": "a83d37cf-3a22-4ad3-a2ea-c4d56f9b9c66",
"name": "ttt",
"type": "threat-ioc-feed",
"domain": {
"uid": "41e821a0-3720-11e3-aa6e-0800200c9fde",
"name": "SMC User",
"domain-type": "domain"
},
"icon": "ThreatPrevention/FileGlobe",
"color": "black"
}
],
"from": 1,
"to": 2,
"total": 2
}
Workflow Library Example
List Threat Ioc Feed with Check Point Management and Send Results Via Email
Preview this Workflow on desktop