sample
turbot/flowpipe-samples/lookup-iocs
Get Involved
Version
Pipeline: Lookup File hash In Different Tools
A composite Flowpipe mod that lookup a file hash in VirusTotal, Urlscan and other tools.
Run the pipeline
To run this pipeline from your terminal:
flowpipe pipeline run lookup_iocs.pipeline.lookup_file_hash \ --arg 'file_hash=<string>'Use this pipeline
To call this pipeline from your pipeline, use a step:
step "pipeline" "step_name" { pipeline = lookup_iocs.pipeline.lookup_file_hash args = { file_hash = <string> }}Params
| Name | Type | Required | Description | Default |
|---|---|---|---|---|
| virustotal_conn | connection.virustotal | Yes | Name of VirusTotal connection to use. If not provided, the default VirusTotal connection will be used. | connection.virustotal.default |
| urlscan_conn | connection.urlscan | Yes | Name of URL Scan connection to use. If not provided, the default URL Scan connection will be used. | connection.urlscan.default |
| hybrid_analysis_api_key | string | Yes | API key to authenticate requests with Hybrid Analysis. | Your_Hybrid_Analysis_API_Key |
| file_hash | string | Yes | The file hash to be scanned. | - |
Outputs
| Name | Description |
|---|---|
| lookup_file_hash |