samples
turbot/flowpipe-samples/lookup-iocs
Get Involved
Version
Lookup File hash In Different Tools
A composite Flowpipe mod that lookup a file hash in VirusTotal, Urlscan and other tools.
Run the pipeline
To run this pipeline from your terminal:
flowpipe pipeline run lookup_iocs.pipeline.lookup_file_hash \ --arg 'file_hash=<string>'Use this pipeline
To call this pipeline from your pipeline, use a step:
step "pipeline" "step_name" { pipeline = lookup_iocs.pipeline.lookup_file_hash args = { file_hash = <string> }}Params
| Name | Type | Required | Description | Default |
|---|---|---|---|---|
| virustotal_cred | string | Yes | Name for VirusTotal credentials to use. If not provided, the default credentials will be used. | default |
| urlscan_cred | string | Yes | Name for URLScan.io credentials to use. If not provided, the default credentials will be used. | default |
| hybrid_analysis_api_key | string | Yes | API key to authenticate requests with Hybrid Analysis. | Your_Hybrid_Analysis_API_Key |
| file_hash | string | Yes | The file hash to be scanned. | - |
Outputs
| Name | Description |
|---|---|
| lookup_file_hash |