Phishing Initiative
Integration version: 9.0
Credentials - API Key and Token Authorization
First, to obtain your API Key, sign in to your PhisingInitiative Account.
Click on your username on the upper right side of the screen and choose API from the drop down menu.
The page displaying your API Key and Authorization Request will appear. Copy your given API Key to use it as a part of the Authorization process further in configuring Phishing Initiative.
Configure Phishing Initiative integration in Google Security Operations SOAR
For detailed instructions on how to configure an integration in Google Security Operations SOAR, see Configure integrations.
Actions
Get URL Status
Description
Get the status of a URL.
Parameters
N/A
Use cases
N/A
Run On
This action runs on the URL entity.
Action Results
Entity Enrichment
Enrichment Field Name | Logic - When to apply |
---|---|
url | Returns if it exists in JSON result |
tag | Returns if it exists in JSON result |
tag_label | Returns if it exists in JSON result |
Insights
N/A
Script Result
Script Result Name | Value Options | Example |
---|---|---|
is_phishing | True/False | is_phishing:False |
JSON Result
[
{
"EntityResult": {
"url": "https: //www.dieutribenhkhop.com",
"tag": -1,
"tag_label": "notsubmitted"
},
"Entity": "https: //www.dieutribenhkhop.com"
},{
"EntityResult": {
"url": "http: //markossolomon.com/f1q7qx.php",
"tag": -1,
"tag_label": "notsubmitted"
},
"Entity": "HTTP: //MARKOSSOLOMON.COM/F1Q7QX.PHP"
}
]
Ping
Description
Test Connectivity.
Parameters
N/A
Use cases
N/A
Run On
This action runs on all entities.
Action Results
Entity Enrichment
N/A
Insights
N/A
Script Result
Script Result Name | Value Options | Example |
---|---|---|
is_success | True/False | is_success:False |
JSON Result
N/A