AbuseIPDB

AbuseIPDB is dedicated to helping combat the spread of hackers, spammers, and abusive activity on the internet.

Integration with LogicHub

Connecting with AbuseIPDB

To connect to AbuseIPDB following details are required:

  • Label: Connection name.
  • Reference Values: Define variables here to templatize integration connections and actions. For example, you can use https://www.{{hostname}}.com where, hostname is a variable defined in this input. For more information on how to add data, see 'Add Data' Input Type for Integrations.
  • API Key: The API key to connect to the AbuseIPDB.

Actions with AbuseIPDB

IP Lookup

Submit IPs for a Threat Intelligence Lookup. Based off of the results, automate how Incident Response is handled.

Inputs to this Action

  • Connections: Choose a connection that you have created.
  • Column Name: Select the name of the column from parent table to lookup value for.

Output of Action
JSON containing the following items:

  • result: The suspicious activity of the IP address.
{
   "suspicious":"0",
   "msg":"No suspicious activity was detected on 23.12.45.6"
}

Did this page help you?