MalNet with ProofPoint (by ShadowDragon)
Modified on: Wed, 7 Sep, 2022 at 7:03 PM
Overview
MalNet with ProofPoint brings together the industry’s most extensive
malware threat information from Proofpoint with link analysis from
Maltego.
With these Transforms, investigators can identify and visualize
malware connections to expedite investigations, response, and malware
protection. Correlate IOCs, campaign dates, IDS to malware hash
relations, C2 infrastructure identification, and much more.
To read more click here.
MalNet - Get Destination IP
| License Key |
string |
apikey123 |
false |
false |
false |
| Display Name |
MalNet - Get Destination IP |
| Owner |
ShadowDragon |
| Author |
contact@shadowdragon.io |
| Data Source |
MalNet |
| Output Entities |
Phrase |
| Short Description |
|
Variants
| MalNetGetConnectionDestinationIP |
malnet.Connection |
| MalNetGetHTTPRequestDestinationIP |
malnet.Request |
MalNet - Get Destination
Port
| License Key |
string |
apikey123 |
false |
false |
false |
| Display Name |
MalNet - Get Destination Port |
| Owner |
ShadowDragon |
| Author |
contact@shadowdragon.io |
| Data Source |
MalNet |
| Transform Name |
MalNetGetConnectionDestinationPort |
| Input Entities |
malnet.Connection |
| Output Entities |
Phrase |
| Short Description |
|
MalNet - Get Source
| License Key |
string |
apikey123 |
false |
false |
false |
| Display Name |
MalNet - Get Source |
| Owner |
ShadowDragon |
| Author |
contact@shadowdragon.io |
| Data Source |
MalNet |
| Transform Name |
MalNetGetConnectionSource |
| Input Entities |
malnet.Connection |
| Output Entities |
Phrase |
| Short Description |
|
MalNet - Get Source Port
| License Key |
string |
apikey123 |
false |
false |
false |
| Display Name |
MalNet - Get Source Port |
| Owner |
ShadowDragon |
| Author |
contact@shadowdragon.io |
| Data Source |
MalNet |
| Transform Name |
MalNetGetConnectionSourcePort |
| Input Entities |
malnet.Connection |
| Output Entities |
Phrase |
| Short Description |
|
MalNet - Get Domain
| License Key |
string |
apikey123 |
false |
false |
false |
| Display Name |
MalNet - Get Domain |
| Owner |
ShadowDragon |
| Author |
contact@shadowdragon.io |
| Data Source |
MalNet |
| Output Entities |
Phrase |
| Short Description |
|
Variants
| MalNetGetDNSLookupDomain |
malnet.DNSLookup |
| MalNetGetHTTPRequestDomain |
malnet.Request |
MalNet - Get Source IP
| License Key |
string |
apikey123 |
false |
false |
false |
| Display Name |
MalNet - Get Source IP |
| Owner |
ShadowDragon |
| Author |
contact@shadowdragon.io |
| Data Source |
MalNet |
| Transform Name |
MalNetGetHTTPRequestSourceIP |
| Input Entities |
malnet.Request |
| Output Entities |
Phrase |
| Short Description |
|
MalNet - Get URL
| License Key |
string |
apikey123 |
false |
false |
false |
| Display Name |
MalNet - Get URL |
| Owner |
ShadowDragon |
| Author |
contact@shadowdragon.io |
| Data Source |
MalNet |
| Transform Name |
MalNetGetHTTPRequestURL |
| Input Entities |
malnet.Request |
| Output Entities |
Phrase |
| Short Description |
|
MalNet - Get Connections
| License Key |
string |
apikey123 |
false |
false |
false |
| Display Name |
MalNet - Get Connections |
| Owner |
ShadowDragon |
| Author |
contact@shadowdragon.io |
| Data Source |
MalNet |
| Transform Name |
MalNetGetSampleConnections |
| Input Entities |
malnet.Sample |
| Output Entities |
Phrase |
| Short Description |
|
MalNet - Get Details
| License Key |
string |
apikey123 |
false |
false |
false |
| Display Name |
MalNet - Get Details |
| Owner |
ShadowDragon |
| Author |
contact@shadowdragon.io |
| Data Source |
MalNet |
| Transform Name |
MalNetGetSampleDetails |
| Input Entities |
malnet.Sample |
| Output Entities |
Phrase |
| Short Description |
|
MalNet - Get DNS Lookups
| License Key |
string |
apikey123 |
false |
false |
false |
| Display Name |
MalNet - Get DNS Lookups |
| Owner |
ShadowDragon |
| Author |
contact@shadowdragon.io |
| Data Source |
MalNet |
| Output Entities |
Phrase |
| Short Description |
|
Variants
| MalNetGetSampleDNSLookups |
malnet.Sample |
| MalNetGetDNSLookupDomainByNSRecord |
maltego.DNSName |
MalNet - Get Events
| License Key |
string |
apikey123 |
false |
false |
false |
| Display Name |
MalNet - Get Events |
| Owner |
ShadowDragon |
| Author |
contact@shadowdragon.io |
| Data Source |
MalNet |
| Transform Name |
MalNetGetSampleEvents |
| Input Entities |
malnet.Sample |
| Output Entities |
Phrase |
| Short Description |
|
MalNet - Get Requests
| License Key |
string |
apikey123 |
false |
false |
false |
| Display Name |
MalNet - Get Requests |
| Owner |
ShadowDragon |
| Author |
contact@shadowdragon.io |
| Data Source |
MalNet |
| Transform Name |
MalNetGetSampleHTTPRequests |
| Input Entities |
malnet.Sample |
| Output Entities |
Phrase |
| Short Description |
|
MalNet - Get Date Submitted
| License Key |
string |
apikey123 |
false |
false |
false |
| Display Name |
MalNet - Get Date Submitted |
| Owner |
ShadowDragon |
| Author |
contact@shadowdragon.io |
| Data Source |
MalNet |
| Transform Name |
MalNetGetSampleSubmitDate |
| Input Entities |
malnet.Sample |
| Output Entities |
Phrase |
| Short Description |
|
MalNet - Get Submit Date
Month
| License Key |
string |
apikey123 |
false |
false |
false |
| Display Name |
MalNet - Get Submit Date Month |
| Owner |
ShadowDragon |
| Author |
contact@shadowdragon.io |
| Data Source |
MalNet |
| Transform Name |
MalNetGetSampleSubmitDateMonth |
| Input Entities |
malnet.DateTime |
| Output Entities |
Phrase |
| Short Description |
|
MalNet - Get Signature
| License Key |
string |
apikey123 |
false |
false |
false |
| Display Name |
MalNet - Get Signature |
| Owner |
ShadowDragon |
| Author |
contact@shadowdragon.io |
| Data Source |
MalNet |
| Transform Name |
MalNetGetSignature |
| Input Entities |
malnet.IDSEvent |
| Output Entities |
Phrase |
| Short Description |
|
MalNet - Get Related Domains
| License Key |
string |
apikey123 |
false |
false |
false |
| Display Name |
MalNet - Get Related Domains |
| Owner |
ShadowDragon |
| Author |
contact@shadowdragon.io |
| Data Source |
MalNet |
| Output Entities |
Phrase |
| Short Description |
|
Variants
| MalNetGetSignatureRelatedDomains |
malnet.Signature |
| MalNetGetIPRelatedDomains |
maltego.IPv4Address |
| License Key |
string |
apikey123 |
false |
false |
false |
| Display Name |
MalNet - Get Related IPs |
| Owner |
ShadowDragon |
| Author |
contact@shadowdragon.io |
| Data Source |
MalNet |
| Transform Name |
MalNetGetSignatureRelatedIPs |
| Input Entities |
malnet.Signature |
| Output Entities |
Phrase |
| Short Description |
|
| License Key |
string |
apikey123 |
false |
false |
false |
| Display Name |
MalNet - Get Related Samples |
| Owner |
ShadowDragon |
| Author |
contact@shadowdragon.io |
| Data Source |
MalNet |
| Output Entities |
Phrase |
| Short Description |
|
Variants
| MalNetGetSignatureRelatedSamples |
malnet.Signature |
| MalNetGetIPRelatedMalwareSamples |
maltego.IPv4Address |
| MalNetGetRelatedSamples |
maltego.Domain |
MalNet - Get Registrant
Email
| License Key |
string |
apikey123 |
false |
false |
false |
| Display Name |
MalNet - Get Registrant Email |
| Owner |
ShadowDragon |
| Author |
contact@shadowdragon.io |
| Data Source |
MalNet |
| Transform Name |
MalNetGetRegistrantEmail |
| Input Entities |
malnet.Whois |
| Output Entities |
Phrase |
| Short Description |
|
MalNet - Get Registrar
Country
| License Key |
string |
apikey123 |
false |
false |
false |
| Display Name |
MalNet - Get Registrar Country |
| Owner |
ShadowDragon |
| Author |
contact@shadowdragon.io |
| Data Source |
MalNet |
| Transform Name |
MalNetGetRegistrarCountry |
| Input Entities |
malnet.Whois |
| Output Entities |
Phrase |
| Short Description |
|
MalNet - Get Registrar
Website
| License Key |
string |
apikey123 |
false |
false |
false |
| Display Name |
MalNet - Get Registrar Website |
| Owner |
ShadowDragon |
| Author |
contact@shadowdragon.io |
| Data Source |
MalNet |
| Transform Name |
MalNetGetRegistrarWebsite |
| Input Entities |
malnet.Whois |
| Output Entities |
Phrase |
| Short Description |
|
MalNet - Get Name Server
Info
| License Key |
string |
apikey123 |
false |
false |
false |
| Display Name |
MalNet - Get Name Server Info |
| Owner |
ShadowDragon |
| Author |
contact@shadowdragon.io |
| Data Source |
MalNet |
| Transform Name |
MalNetGetDomainNameserverInfo |
| Input Entities |
maltego.Domain |
| Output Entities |
Phrase |
| Short Description |
|
MalNet - Get WhoIs Info
| License Key |
string |
apikey123 |
false |
false |
false |
| Display Name |
MalNet - Get WhoIs Info |
| Owner |
ShadowDragon |
| Author |
contact@shadowdragon.io |
| Data Source |
MalNet |
| Transform Name |
MalNetGetDomainWhoIs |
| Input Entities |
maltego.Domain |
| Output Entities |
Phrase |
| Short Description |
|
MalNet - Get Sample DNS
Lookups
| License Key |
string |
apikey123 |
false |
false |
false |
| Display Name |
MalNet - Get Sample DNS Lookups |
| Owner |
ShadowDragon |
| Author |
contact@shadowdragon.io |
| Data Source |
MalNet |
| Transform Name |
MalNetGetSampleDNSLookupsHash |
| Input Entities |
maltego.Hash |
| Output Entities |
Phrase |
| Short Description |
|
MalNet - Get Sample HTTP
Requests
| License Key |
string |
apikey123 |
false |
false |
false |
| Display Name |
MalNet - Get Sample HTTP Requests |
| Owner |
ShadowDragon |
| Author |
contact@shadowdragon.io |
| Data Source |
MalNet |
| Transform Name |
MalNetGetSampleHTTPRequestHash |
| Input Entities |
maltego.Hash |
| Output Entities |
Phrase |
| Short Description |
|
MalNet - Get Sample Details
| License Key |
string |
apikey123 |
false |
false |
false |
| Display Name |
MalNet - Get Sample Details |
| Owner |
ShadowDragon |
| Author |
contact@shadowdragon.io |
| Data Source |
MalNet |
| Transform Name |
MalNetGetSampleDetailsHash |
| Input Entities |
maltego.Hash |
| Output Entities |
Phrase |
| Short Description |
|
MalNet - Get Sample
Connections
| License Key |
string |
apikey123 |
false |
false |
false |
| Display Name |
MalNet - Get Sample Connections |
| Owner |
ShadowDragon |
| Author |
contact@shadowdragon.io |
| Data Source |
MalNet |
| Transform Name |
MalNetGetSampleConnectionsHash |
| Input Entities |
maltego.Hash |
| Output Entities |
Phrase |
| Short Description |
|
MalNet - Get Sample IDS
Events
| License Key |
string |
apikey123 |
false |
false |
false |
| Display Name |
MalNet - Get Sample IDS Events |
| Owner |
ShadowDragon |
| Author |
contact@shadowdragon.io |
| Data Source |
MalNet |
| Transform Name |
MalNetGetSampleIDSEventsHash |
| Input Entities |
maltego.Hash |
| Output Entities |
Phrase |
| Short Description |
|
MalNet - Get Sample
Submitted Date
| License Key |
string |
apikey123 |
false |
false |
false |
| Display Name |
MalNet - Get Sample Submitted Date |
| Owner |
ShadowDragon |
| Author |
contact@shadowdragon.io |
| Data Source |
MalNet |
| Transform Name |
MalNetGetSampleSubmitDateHash |
| Input Entities |
maltego.Hash |
| Output Entities |
Phrase |
| Short Description |
|
| License Key |
string |
apikey123 |
false |
false |
false |
| Display Name |
MalNet - Get Related IDS Events |
| Owner |
ShadowDragon |
| Author |
contact@shadowdragon.io |
| Data Source |
MalNet |
| Output Entities |
Phrase |
| Short Description |
|
Variants
| MalNetGetIPRelatedIDSEvents |
maltego.IPv4Address |
| MalNetGetRelatedIDSEvents |
maltego.Domain |
MalNet - Get GeoLocation
Info
| License Key |
string |
apikey123 |
false |
false |
false |
| Display Name |
MalNet - Get GeoLocation Info |
| Owner |
ShadowDragon |
| Author |
contact@shadowdragon.io |
| Data Source |
MalNet |
| Output Entities |
Phrase |
| Short Description |
|
Variants
| MalNetGetIPGeoLocationInfo |
maltego.IPv4Address |
| MalNetGetDomainGeolocation |
maltego.Domain |
MalNet - Get Malware
Requested URLs
| License Key |
string |
apikey123 |
false |
false |
false |
| Display Name |
MalNet - Get Malware Requested URLs |
| Owner |
ShadowDragon |
| Author |
contact@shadowdragon.io |
| Data Source |
MalNet |
| Output Entities |
Phrase |
| Short Description |
|
Variants
| MalNetGetIPMalwareRequestedURLs |
maltego.IPv4Address |
| MalNetGetDomainMalwareRequestedURLS |
maltego.Domain |
| License Key |
string |
apikey123 |
false |
false |
false |
| Display Name |
MalNet - Get Related Malwares Sample Phrase |
| Owner |
ShadowDragon |
| Author |
contact@shadowdragon.io |
| Data Source |
MalNet |
| Transform Name |
MalNetGetIPRelatedMalwareSamplesPhrase |
| Input Entities |
maltego.IPv4Address |
| Output Entities |
Phrase |
| Short Description |
|
MalNet - Get Current
Reputation
| License Key |
string |
apikey123 |
false |
false |
false |
| Display Name |
MalNet - Get Current Reputation |
| Owner |
ShadowDragon |
| Author |
contact@shadowdragon.io |
| Data Source |
MalNet |
| Output Entities |
Phrase |
| Short Description |
|
Variants
| MalNetGetDomainReputation |
maltego.Domain |
| MalNetGetIPReputation |
maltego.IPv4Address |
| License Key |
string |
apikey123 |
false |
false |
false |
| Display Name |
MalNet - Get Related Ip Addresses |
| Owner |
ShadowDragon |
| Author |
contact@shadowdragon.io |
| Data Source |
MalNet |
| Transform Name |
MalNetGetRelatedIPs |
| Input Entities |
maltego.Domain |
| Output Entities |
Phrase |
| Short Description |
|
MalNet - Get Date
| License Key |
string |
apikey123 |
false |
false |
false |
| Display Name |
MalNet - Get Date |
| Owner |
ShadowDragon |
| Author |
contact@shadowdragon.io |
| Data Source |
MalNet |
| Transform Name |
MalNetGetConnectionDate |
| Input Entities |
malnet.Connection |
| Output Entities |
Phrase |
| Short Description |
|