Send File Analysis Playbook Request

Submit a file for security analysis using a specific playbook.

External DocumentationTo learn more, visit the Intel Owl documentation.

Basic Parameters

Parameter	Description
File Identifier	The identifier of the file to be analyzed.
Playbook	The name of the playbook to execute for the analysis.
TLP	Traffic Light Protocol classification level to control information sharing.
Tag	A label to assign to the analysis.

Advanced Parameters

Parameter	Description
Analyzers Runtime Configuration	A configuration object to override default analyzers configuration. For example: `{ “Doc_Info”: { “additional_passwords_to_check”: [“passwd”, “2020”] } }` For more information about the `Runtime Configuration`, refer to Intel Owl API documentation.

Example Output

{
	"results": [
		{
			"job_id": 75,
			"analyzers_running": [
				"ClamAV",
				"Cymru_Hash_Registry_Get_File",
				"Doc_Info",
				"File_Info",
				"HashLookupServer_Get_File",
				"Permhash",
				"Strings_Info",
				"Yara",
				"Zippy_scan"
			],
			"connectors_running": [],
			"visualizers_running": [
				"Data_Model"
			],
			"playbook_running": "FREE_TO_USE_ANALYZERS",
			"investigation": null,
			"status": "accepted",
			"already_exists": false
		}
	],
	"count": 1
}

Workflow Library Example

Send File Analysis Playbook Request with Intel Owl and Send Results Via Email

Preview this Workflow on desktop

Integrations

​Basic Parameters

​Advanced Parameters

​Example Output

​Workflow Library Example

Basic Parameters

Advanced Parameters

Example Output

Workflow Library Example