Sha256: fd066e09af7c0293f7653bb2bd30c6fece662ee9dee861fa0e34d1f6828205b0
Contents?: true
Size: 1.56 KB
Versions: 1
Compression:
Stored size: 1.56 KB
Contents
--- tags: - IP address - Domain - Passive DNS - Passive SSL - Reverse Whois --- # PassiveTotal - [https://community.riskiq.com/](https://community.riskiq.com/home) This analyzer uses [PassvieTotal API](https://api.passivetotal.org/index.html). An API endpoint to use is changed based on a type of a query. | Query | API endpoint | Artifact | | --------------------------------------- | ----------------------------- | ---------- | | IP address | `/v2/dns/passive` | Domain | | Domain | `/v2/dns/passive` | IP address | | Mail | `/v2/whois/search` | Domain | | Hash (SSL certificate SHA1 fingerprint) | `/v2/ssl-certificate/history` | IP address | ```yaml analyzer: passivetotal query: ... username: ... api_key: ... ``` | Name | Type | Required? | Default | Desc. | | -------- | ------ | --------- | ---------------------------- | ---------------------------------------------------------------- | | query | String | Yes | | Domain, IP address, mail address or SHA1 certificate fingerprint | | username | String | No | ENV[”PASSIVETOTAL_USERNAME"] | Username | | api_key | String | No | ENV[”PASSIVETOTAL_API_KEY"] | API key |
Version data entries
1 entries across 1 versions & 1 rubygems
| Version | Path |
|---|---|
| mihari-5.4.5 | docs/analyzers/passivetotal.md |