Randori
version: 2.0.0
Randori recon provides a continuous view of your external perimeter to reduce the risks of shadow IT, misconfigurations, and process failures.
Connect Randori with LogicHub
- Navigate to Automations > Integrations.
- Search for Accenture MSS.
- Click Details, then the + icon. Enter the required information in the following fields.
- Label: Enter a connection name.
- Reference Values: Define variables here to templatize integration connections and actions. For example, you can use https://www.{{hostname}}.com where, hostname is a variable defined in this input. For more information on how to add data, see 'Add Data' Input Type for Integrations.
- Verify SSL: Select option to verify connecting server's SSL certificate (Default is Verify SSL Certificate).
- Remote Agent: Run this integration using the LogicHub Remote Agent.
- Server URL (Optional): Application server url to connect to the Randori (Default is https://app.randori.io).
- API Key: The API Key to connect to the Obsidian.
- After you've entered all the details, click Connect.
Actions for Randori
Get All Detections For Target
Search all detections for target objects with an optional filter.
Input Field
Choose a connection that you have previously created and then fill in the necessary information in the following input fields to complete the connection.
| Input Name | Description | Required |
|---|---|---|
| Jinja Template for Query | Jinja-templated query containing the query to use, jquery querybuilder complex search field. Example: {"condition":"AND","rules":[{"field":"table.id","operator":"{{operator_column_name}}","value":"{{value_column_name}}"}]}. | Optional |
| Jinja Template for Sort | Jinja-templated query containing comma-separated values of sort. Fields in the object to sort by, in order of precedence, minus indicates descending. Example:{{sort_column_name1}}, {{sort_column_name2}}. | Optional |
| Reversed Nulls | Select option for reversed nulls, If set as True, sorts nulls as if smaller than any non-null value for all sort parameters, otherwise treats as if larger. (Default is False). | Optional |
| Offset | Offset into available records after filtering (Default is 0). | Optional |
| Limit | Maximum number of records to return (Default is 2000 records). | Optional |
Output
A JSON object containing multiple rows of result:
- has_error: True/False
- error: message/null
- result: List of detections for target objects.
Get Hostname
Search hostname objects with an optional filter.
Input Field
Choose a connection that you have previously created and then fill in the necessary information in the following input fields to complete the connection.
| Input Name | Description | Required |
|---|---|---|
| JInja Template for Query | Jinja-templated query containing the query to use, jquery querybuilder complex search field. Example: {"condition":"AND","rules":[{"field":"table.id","operator":"{{operator_column_name}}","value":"{{value_column_name}}"}]}. | Optional |
| Jinja Template for Sort | Jinja-templated query containing comma-separated values of sort. Fields in the object to sort by, in order of precedence, minus indicates descending. Example:{{sort_column_name1}}, {{sort_column_name2}}. | Optional |
| Reversed Nulls | Select option for reversed nulls, If set as True, sorts nulls as if smaller than any non-null value for all sort parameters, otherwise treats as if larger. (Default is False). | Optional |
| Offset | Offset into available records after filtering (Default is 0). | Optional |
| Limit | Maximum number of records to return (Default is 2000 records). | Optional |
Output
A JSON object containing multiple rows of result:
- has_error: True/False
- error: message/null
- result: List of hostname objects.
Get Hostnames for IP
Search hostnames for IP objects with an optional filter.
Input Field
Choose a connection that you have previously created and then fill in the necessary information in the following input fields to complete the connection.
| Input Name | Description | Required |
|---|---|---|
| Jinja Template for Query | Jinja-templated query containing the query to use, jquery querybuilder complex search field. Example: {"condition":"AND","rules":[{"field":"table.id","operator":"{{operator_column_name}}","value":"{{value_column_name}}"}]}. | Optional |
| Jinja Template for Sort | Jinja-templated query containing comma-separated values of sort. Fields in the object to sort by, in order of precedence, minus indicates descending. Example:{{sort_column_name1}}, {{sort_column_name2}}. | Optional |
| Reversed Nulls | Select option for reversed nulls, If set as True, sorts nulls as if smaller than any non-null value for all sort parameters, otherwise treats as if larger. (Default is False). | Optional |
| Offset | Offset into available records after filtering (Default is 0). | Optional |
| Limit | Maximum number of records to return (Default is 2000 records). | Optional |
Output
A JSON object containing multiple rows of result:
- has_error: True/False
- error: message/null
- result: List of hostnames for ip objects.
Get IP
Search IP objects with an optional filter.
Input Field
Choose a connection that you have previously created and then fill in the necessary information in the following input fields to complete the connection.
| Input Name | Description | Required |
|---|---|---|
| Jinja Template for Query | Jinja-templated query containing the query to use, jquery querybuilder complex search field. Example: {"condition":"AND","rules":[{"field":"table.id","operator":"{{operator_column_name}}","value":"{{value_column_name}}"}]}. | Optional |
| Jinja Template for Sort | Jinja-templated query containing comma-separated values of sort. Fields in the object to sort by, in order of precedence, minus indicates descending. Example:{{sort_column_name1}}, {{sort_column_name2}}. | Optional |
| Reversed Nulls | Select option for reversed nulls, If set as True, sorts nulls as if smaller than any non-null value for all sort parameters, otherwise treats as if larger. (Default is False). | Optional |
| Offset | Offset into available records after filtering (Default is 0). | Optional |
| Limit | Maximum number of records to return (Default is 2000 records). | Optional |
Output
A JSON object containing multiple rows of result:
- has_error: True/False
- error: message/null
- result: List of IP objects.
Get IPs for Hostname
Search IPs for hostname objects with an optional filter.
Input Field
Choose a connection that you have previously created and then fill in the necessary information in the following input fields to complete the connection.
| Input Name | Description | Required |
|---|---|---|
| Jinja Template for Query | Jinja-templated query containing the query to use, jquery querybuilder complex search field. Example: {"condition":"AND","rules":[{"field":"table.id","operator":"{{operator_column_name}}","value":"{{value_column_name}}"}]}. | Optional |
| Jinja Template for Sort | Jinja-templated query containing comma-separated values of sort. Fields in the object to sort by, in order of precedence, minus indicates descending. Example:{{sort_column_name1}}, {{sort_column_name2}}. | Optional |
| Reversed Nulls | Select option for reversed nulls, If set as True, sorts nulls as if smaller than any non-null value for all sort parameters, otherwise treats as if larger. (Default is False). | Optional |
| Offset | Offset into available records after filtering (Default is 0). | Optional |
| Limit | Maximum number of records to return (Default is 2000 records). | Optional |
Output
A JSON object containing multiple rows of result:
- has_error: True/False
- error: message/null
- result: List of IPs for hostname objects.
Get IPs for Service
Search IPs for service objects with an optional filter.
Input Field
Choose a connection that you have previously created and then fill in the necessary information in the following input fields to complete the connection.
| Input Name | Description | Required |
|---|---|---|
| Jinja Template for Query | Jinja-templated query containing the query to use, jquery querybuilder complex search field. Example: {"condition":"AND","rules":[{"field":"table.id","operator":"{{operator_column_name}}","value":"{{value_column_name}}"}]}. | Optional |
| Jinja Template for Sort | Jinja-templated query containing comma-separated values of sort. Fields in the object to sort by, in order of precedence, minus indicates descending. Example:{{sort_column_name1}}, {{sort_column_name2}}. | Optional |
| Reversed Nulls | Select option for reversed nulls, If set as True, sorts nulls as if smaller than any non-null value for all sort parameters, otherwise treats as if larger. (Default is False). | Optional |
| Offset | Offset into available records after filtering (Default is 0). | Optional |
| Limit | Maximum number of records to return (Default is 2000 records). | Optional |
Output
A JSON object containing multiple rows of result:
- has_error: True/False
- error: message/null
- result: List of IPs for service objects.
Get Network
Search network objects with an optional filter.
Input Field
Choose a connection that you have previously created and then fill in the necessary information in the following input fields to complete the connection.
| Input Name | Description | Required |
|---|---|---|
| Jinja Template for Query | Jinja-templated query containing the query to use, jquery querybuilder complex search field. Example: {"condition":"AND","rules":[{"field":"table.id","operator":"{{operator_column_name}}","value":"{{value_column_name}}"}]}. | Optional |
| Jinja Template for Sort | Jinja-templated query containing comma-separated values of sort. Fields in the object to sort by, in order of precedence, minus indicates descending. Example:{{sort_column_name1}}, {{sort_column_name2}}. | Optional |
| Reversed Nulls | Select option for reversed nulls, If set as True, sorts nulls as if smaller than any non-null value for all sort parameters, otherwise treats as if larger. (Default is False). | Optional |
| Reversed Nulls | Select option for reversed nulls, If set as True, sorts nulls as if smaller than any non-null value for all sort parameters, otherwise treats as if larger. (Default is False). | Optional |
| Offset | Offset into available records after filtering (Default is 0). | Optional |
| Limit | Maximum number of records to return (Default is 2000 records). | Optional |
Output
A JSON object containing multiple rows of result:
- has_error: True/False
- error: message/null
- result: List of network objects.
Get Ports for IP
Search ports for IP objects with an optional filter.
Input Field
Choose a connection that you have previously created and then fill in the necessary information in the following input fields to complete the connection.
| Input Name | Description | Required |
|---|---|---|
| Jinja Template for Query | Jinja-templated query containing the query to use, jquery querybuilder complex search field. Example: {"condition":"AND","rules":[{"field":"table.id","operator":"{{operator_column_name}}","value":"{{value_column_name}}"}]}. | Optional |
| Jinja Template for Sort | Jinja-templated query containing comma-separated values of sort. Fields in the object to sort by, in order of precedence, minus indicates descending. Example:{{sort_column_name1}}, {{sort_column_name2}}. | Optional |
| Reversed Nulls | Select option for reversed nulls, If set as True, sorts nulls as if smaller than any non-null value for all sort parameters, otherwise treats as if larger. (Default is False). | Optional |
| Offset | Offset into available records after filtering (Default is 0). | Optional |
| Limit | Maximum number of records to return (Default is 2000 records). | Optional |
Output
A JSON object containing multiple rows of result:
- has_error: True/False
- error: message/null
- result: List of ports for ip objects.
Get Service
Search service objects with an optional filter.
Input Field
Choose a connection that you have previously created and then fill in the necessary information in the following input fields to complete the connection.
| Input Name | Description | Required |
|---|---|---|
| Jinja Template for Query | Jinja-templated query containing the query to use, jquery querybuilder complex search field. Example: {"condition":"AND","rules":[{"field":"table.id","operator":"{{operator_column_name}}","value":"{{value_column_name}}"}]}. | Optional |
| Jinja Template for Sort | Jinja-templated query containing comma-separated values of sort. Fields in the object to sort by, in order of precedence, minus indicates descending. Example:{{sort_column_name1}}, {{sort_column_name2}}. | Optional |
| Reversed Nulls | Select option for reversed nulls, If set as True, sorts nulls as if smaller than any non-null value for all sort parameters, otherwise treats as if larger. (Default is False). | Optional |
| Offset | Offset into available records after filtering (Default is 0). | Optional |
| Limit | Maximum number of records to return (Default is 2000 records). | Optional |
Output
A JSON object containing multiple rows of result:
- has_error: True/False
- error: message/null
- result: List of service objects.
Get Single Hostname
Get one hostname object by ID.
Input Field
Choose a connection that you have previously created and then fill in the necessary information in the following input fields to complete the connection.
| Input Name | Description | Required |
|---|---|---|
| ID | Column name from the parent table to lookup value for the ID. | Required |
Output
A JSON object containing multiple rows of result:
- has_error: True/False
- error: message/null
- result: Hostname object details.
Get Single Hostnames for IP
Get one hostname for the IP of an object by ID.
Input Field
Choose a connection that you have previously created and then fill in the necessary information in the following input fields to complete the connection.
| Input Name | Description | Required |
|---|---|---|
| ID | Column name from the parent table to lookup value for id. | Required |
Output
A JSON object containing multiple rows of result:
- has_error: True/False
- error: message/null
- result: Hostname for ip of object details.
Get Single IP
Get one IP object by ID.
Input Field
Choose a connection that you have previously created and then fill in the necessary information in the following input fields to complete the connection.
| Input Name | Description | Required |
|---|---|---|
| ID | Column name from the parent table to lookup value for the ID. | Required |
Output
A JSON object containing multiple rows of result:
- has_error: True/False
- error: message/null
- result: IP object details.
Get Single Target
Get one target object by ID.
Input Field
Choose a connection that you have previously created and then fill in the necessary information in the following input fields to complete the connection.
| Input Name | Description | Required |
|---|---|---|
| ID | Column name from the parent table to lookup value for the ID. | Required |
Output
A JSON object containing multiple rows of result:
- has_error: True/False
- error: message/null
- result: Target object details.
Get Statistics
Search statistics objects with an optional filter.
Input Field
Choose a connection that you have previously created and then fill in the necessary information in the following input fields to complete the connection.
| Input Name | Description | Required |
|---|---|---|
| Jinja Template for Query | Jinja-templated query containing the query to use, jquery querybuilder complex search field. Example: {"condition":"AND","rules":[{"field":"table.id","operator":"{{operator_column_name}}","value":"{{value_column_name}}"}]}. | Optional |
| Jinja Template for Sort | Jinja-templated query containing comma-separated values of sort. Fields in the object to sort by, in order of precedence, minus indicates descending. Example:{{sort_column_name1}}, {{sort_column_name2}}. | Optional |
| Reversed Nulls | Select option for reversed nulls, If set as True, sorts nulls as if smaller than any non-null value for all sort parameters, otherwise treats as if larger. (Default is False). | Optional |
| Interval | Number of records to skip between responses (Default is 0 interval). | Optional |
| Offset | Offset into available records after filtering (Default is 0). | Optional |
| Limit | Maximum number of records to return (Default is 2000 records). | Optional |
Output
A JSON object containing multiple rows of result:
- has_error: True/False
- error: message/null
- result: List of statistics objects.
Get Target
Search target objects with an optional filter.
Input Field
Choose a connection that you have previously created and then fill in the necessary information in the following input fields to complete the connection.
| Input Name | Description | Required |
|---|---|---|
| Jinja Template for Query | Jinja-templated query containing the query to use, jquery querybuilder complex search field. Example: {"condition":"AND","rules":[{"field":"table.id","operator":"{{operator_column_name}}","value":"{{value_column_name}}"}]}. | Optional |
| Jinja Template for Sort | Jinja-templated query containing comma-separated values of sort. Fields in the object to sort by, in order of precedence, minus indicates descending. Example:{{sort_column_name1}}, {{sort_column_name2}}. | Optional |
| Reversed Nulls | Select option for reversed nulls, If set as True, sorts nulls as if smaller than any non-null value for all sort parameters, otherwise treats as if larger. (Default is False). | Optional |
| Offset | Offset into available records after filtering (Default is 0). | Optional |
| Limit | Maximum number of records to return (Default is 2000 records). | Optional |
Output
A JSON object containing multiple rows of result:
- has_error: True/False
- error: message/null
- result: List of target objects.
Impact Score Groups
Return counts of a given entity type grouped by impact score.
Input Field
Choose a connection that you have previously created and then fill in the necessary information in the following input fields to complete the connection.
| Input Name | Description | Required |
|---|---|---|
| Jinja Template for First Seen | Jinja-templated query containing first seen in datetime. Example: '2021-01-24T18:02:13+05:30'. | Required |
| Entity Type | Select option for entity type. (Default is POC). | Optional |
Output
A JSON object containing multiple rows of result:
- has_error: True/False
- error: message/null
- result: Return impact score counts.
Priority Groups
Return counts of a given entity type grouped by priority score ranges. This depends on the requester to provide sane ranges; ranges are evaluated in order so overlaps wont yield duplicate results.
Input Field
Choose a connection that you have previously created and then fill in the necessary information in the following input fields to complete the connection.
| Input Name | Description | Required |
|---|---|---|
| Jinja Template for First Seen | Jinja-templated query containing first seen in datetime. Example: '2021-01-24T18:02:13+05:30'. | Required |
| Range Minimum | The minimum number allowed for range. | Required |
| Range Maximum | The maximum number allowed for range. | Required |
| Range Name | Select option for range name. (Default is Medium). | Optional |
| Entity Type | Select option for entity type. (Default is POC). | Optional |
Output
A JSON object containing multiple rows of result:
- has_error: True/False
- error: message/null
- result: Return priority counts.
Status Groups
Return counts of a given entity type grouped by status.
Input Field
Choose a connection that you have previously created and then fill in the necessary information in the following input fields to complete the connection.
| Input Name | Description | Required |
|---|---|---|
| Jinja Template for First Seen | Jinja-templated query containing first seen in datetime. Example: '2021-01-24T18:02:13+05:30'. | Required |
| Entity Type | Select option for entity type. (Default is POC). | Optional |
Output
A JSON object containing multiple rows of result:
- has_error: True/False
- error: message/null
- result: Return status counts.
Target Temptation Groups
Return counts of a given entity type grouped by target temptation score ranges. This depends on the requester to provide sane ranges; ranges are evaluated in order so overlaps wont yield duplicate results.
Input Field
Choose a connection that you have previously created and then fill in the necessary information in the following input fields to complete the connection.
| Input Name | Description | Required |
|---|---|---|
| Jinja Template for First Seen | Jinja-templated query containing first seen in datetime. Example: '2021-01-24T18:02:13+05:30'. | Required |
| Range Minimum | The minimum number allowed for range. | Required |
| Range Maximum | The maximum number allowed for range. | Required |
| Range Name | Select option for range name. (Default is Medium). | Optional |
| Entity Type | Select option for entity type. (Default is Target). | Optional |
Output
A JSON object containing multiple rows of result:
- has_error: True/False
- error: message/null
- result: Return target temptation counts.
Patch Hostname
Bulk patch hostname records.
Input Field
Choose a connection that you have previously created and then fill in the necessary information in the following input fields to complete the connection.
| Input Name | Description | Required |
|---|---|---|
| Jinja Template for Query | Jinja-templated query containing query to use, jquery querybuilder complex search field. Example: {"condition":"AND","rules":[{"id":"table.id","field":"table.id","input":"text","type":"object","operator":"{{operator_column_name}}","value":"{{value_column_name}}"}]}. | Required |
| Affiliation State | Select option for affiliation state. (Default is empty string). | Optional |
| Impact Score | Select option for impact score. (Default is empty string). | Optional |
| Status | Select option for status. (Default is empty string). | Optional |
| Jinja Template for Operation | Jinja-templated query containing operation, 'Path' and 'Value' are required with Operation. | Optional |
| Jinja Template for Path | Jinja-templated query containing path for target location, 'Operation' and 'Value' are required with Path. | Optional |
| Jinja Template for Value | Jinja-templated query containing value, 'Operation' and 'Path' are required with Value. | Optional |
Output
A JSON object containing multiple rows of result:
- has_error: True/False
- error: message/null
- result: Return count of records.
Patch IP
Bulk patch IP records.
Input Field
Choose a connection that you have previously created and then fill in the necessary information in the following input fields to complete the connection.
| Input Name | Description | Required |
|---|---|---|
| Jinja Template for Query | Jinja-templated query containing query to use, jquery querybuilder complex search field. Example: {"condition":"AND","rules":[{"id":"table.id","field":"table.id","input":"text","type":"object","operator":"{{operator_column_name}}","value":"{{value_column_name}}"}]}. | Required |
| Affiliation State | Select option for affiliation state. (Default is empty string). | Optional |
| Impact Score | Select option for impact score. (Default is empty string). | Optional |
| Status | Select option for status. (Default is empty string). | Optional |
| Jinja Template for Operation | Jinja-templated query containing operation, 'Path' and 'Value' are required with Operation. | Optional |
| Jinja Template for Path | Jinja-templated query containing path for target location, 'Operation' and 'Value' are required with Path. | Optional |
| Jinja Template for Value | Jinja-templated query containing value, 'Operation' and 'Path' are required with Value. | Optional |
Output
A JSON object containing multiple rows of result:
- has_error: True/False
- error: message/null
- result: Return count of records.
Patch Network
Bulk patch network records.
Input Field
Choose a connection that you have previously created and then fill in the necessary information in the following input fields to complete the connection.
| Input Name | Description | Required |
|---|---|---|
| Jinja Template for Query | Jinja-templated query containing query to use, jquery querybuilder complex search field. Example: {"condition":"AND","rules":[{"id":"table.id","field":"table.id","input":"text","type":"object","operator":"{{operator_column_name}}","value":"{{value_column_name}}"}]}. | Required |
| Affiliation State | Select option for affiliation state. (Default is empty string). | Optional |
| Impact Score | Select option for impact score. (Default is empty string). | Optional |
| Status | Select option for status. (Default is empty string). | Optional |
| Jinja Template for Operation | Jinja-templated query containing operation, 'Path' and 'Value' are required with Operation. | Optional |
| Jinja Template for Path | Jinja-templated query containing path for target location, 'Operation' and 'Value' are required with Path. | Optional |
| Jinja Template for Value | Jinja-templated query containing value, 'Operation' and 'Path' are required with Value. | Optional |
Output
A JSON object containing multiple rows of result:
- has_error: True/False
- error: message/null
- result: Return count of records.
Patch Social Entity
Bulk patch social entity records.
Input Field
| Input Name | Description | Required |
|---|---|---|
| Jinja Template for Query | Jinja-templated query containing query to use, jquery querybuilder complex search field. Example: {"condition":"AND","rules":[{"id":"table.id","field":"table.id","input":"text","type":"object","operator":"{{operator_column_name}}","value":"{{value_column_name}}"}]}. | Required |
| Affiliation State | Select option for affiliation state. (Default is empty string). | Optional |
| Authorization State | Select option for authorization state. (Default is empty string). | Optional |
| Impact Score | Select option for impact score. (Default is empty string). | Optional |
| Status | Select option for status. (Default is empty string). | Optional |
| Jinja Template for Operation | Jinja-templated query containing operation, 'Path' and 'Value' are required with Operation. | Optional |
| Jinja Template for Path | Jinja-templated query containing path for target location, 'Operation' and 'Value' are required with Path. | Optional |
| Jinja Template for Value | Jinja-templated query containing value, 'Operation' and 'Path' are required with Value. | Optional |
Output
A JSON object containing multiple rows of result:
- has_error: True/False
- error: message/null
- result: Return count of records.
Patch Target
Bulk patch target records.
Input Field
Choose a connection that you have previously created and then fill in the necessary information in the following input fields to complete the connection.
| Input Name | Description | Required |
|---|---|---|
| Jinja Template for Query | Jinja-templated query containing query to use, jquery querybuilder complex search field. Example: {"condition":"AND","rules":[{"id":"table.id","field":"table.id","input":"text","type":"object","operator":"{{operator_column_name}}","value":"{{value_column_name}}"}]}. | Required |
| Affiliation State | Select option for affiliation state. (Default is empty string). | Optional |
| Authorization State | Select option for authorization state. (Default is empty string). | Optional |
| Impact Score | Select option for impact score. (Default is empty string). | Optional |
| Status | Select option for status. (Default is empty string). | Optional |
| Jinja Template for Operation | Jinja-templated query containing operation, 'Path' and 'Value' are required with Operation. | Optional |
| Jinja Template for Path | Jinja-templated query containing path for target location, 'Operation' and 'Value' are required with Path. | Optional |
| Jinja Template for Value | Jinja-templated query containing value, 'Operation' and 'Path' are required with Value. | Optional |
Output
A JSON object containing multiple rows of result:
- has_error: True/False
- error: message/null
- result: Return count of records.
Skip to content
Using Gmail with screen readers
Meet
New meeting
Join a meeting
Hangouts
Conversations
Draft
(no subject)
- Jinja-templated query containing query to use, jquery querybuilder complex search field. Example: {"condition":"AND","rules":[{"id":"table.id","field":"table.id
Attachment:doc.txt
1:04 AM
Draft
(no subject)
-
12:07 AMGet IPs for Hostname Search IPs for hostname objects with an optional filter. Inputs to this Action: * Connection: Choose a connection that you have crea
Draft
(no subject)
- { "data": { "status": "Needs Investigation" }, "q": { "condition": "OR", "rules": [ { "id": "table.id", "field": "table.id", "type": "object", "input": "text",
8:54 PM
0 GB (0%) of 15 GB used
Manage
Terms · Privacy · Program Policies
Last account activity: 11 hours ago
Details
Impact Score Groups
Return counts of a given entity type grouped by impact score.
Input Field
Choose a connection that you have previously created and then fill in the necessary information in the following input fields to complete the connection.
| Input Name | Description | Required |
|---|---|---|
| Jinja Template for First Seen | Jinja-templated query containing first seen in datetime. Example: '2021-01-24T18:02:13+05:30'. | Required |
| Entity Type | Select option for entity type. (Default is POC). | Optional |
Output
A JSON object containing multiple rows of result:
- has_error: True/False
- error: message/null
- result: Return impact score counts.
Priority Groups
Return counts of a given entity type grouped by priority score ranges. This depends on the requester to provide sane ranges; ranges are evaluated in order so overlaps wont yield duplicate results.
Input Field
Choose a connection that you have previously created and then fill in the necessary information in the following input fields to complete the connection.
| Input Name | Description | Required |
|---|---|---|
| Jinja Template for First Seen | Jinja-templated query containing first seen in datetime. Example: '2021-01-24T18:02:13+05:30'. | Required |
| Range Minimum | The minimum number allowed for range. | Required |
| Range Maximum | The maximum number allowed for range. | Required |
| Range Name | Select option for range name. (Default is Medium). | Optional |
| Entity Type | Select option for entity type. (Default is POC). | Optional |
Output
A JSON object containing multiple rows of result:
- has_error: True/False
- error: message/null
- result: Return priority counts.
Status Groups
Return counts of a given entity type grouped by status.
Input Field
Choose a connection that you have previously created and then fill in the necessary information in the following input fields to complete the connection.
| Input Name | Description | Required |
|---|---|---|
| Jinja Template for First Seen | Jinja-templated query containing first seen in datetime. Example: '2021-01-24T18:02:13+05:30'. | Required |
| Entity Type | Select option for entity type. (Default is POC). | Optional |
Output
A JSON object containing multiple rows of result:
- has_error: True/False
- error: message/null
- result: Return status counts.
Target Temptation Groups
Return counts of a given entity type grouped by target temptation score ranges. This depends on the requester to provide sane ranges; ranges are evaluated in order so overlaps wont yield duplicate results.
Input Field
Choose a connection that you have previously created and then fill in the necessary information in the following input fields to complete the connection.
| Input Name | Description | Required |
|---|---|---|
| Jinja Template for First Seen | Jinja-templated query containing first seen in datetime. Example: '2021-01-24T18:02:13+05:30'. | Required |
| Range Minimum | The minimum number allowed for range. | Required |
| Range Maximum | The maximum number allowed for range. | Required |
| Range Name | Select option for range name. (Default is Medium). | Optional |
| Entity Type | Select option for entity type. (Default is Target). | Optional |
Output
A JSON object containing multiple rows of result:
- has_error: True/False
- error: message/null
- result: Return target temptation counts.
Patch Hostname
Bulk patch hostname records.
Input Field
- Connection: Choose a connection that you have created.
- Jinja Template for Query: Jinja-templated query containing query to use, jquery querybuilder complex search field. Example: {"condition":"AND","rules":[{"id":"table.id","field":"table.id","input":"text","type":"object","operator":"{{operator_column_name}}","value":"{{value_column_name}}"}]}.
- Affiliation State (Optional): Select option for affiliation state. (Default is empty string).
- Impact Score (Optional): Select option for impact score. (Default is empty string).
- Status (Optional): Select option for status. (Default is empty string).
- Jinja Template for Operation (Optional): Jinja-templated query containing operation, 'Path' and 'Value' are required with Operation.
- Jinja Template for Path (Optional): Jinja-templated query containing path for target location, 'Operation' and 'Value' are required with Path.
Output of Action:
A JSON object containing multiple rows of result:
- has_error: True/False
- error: message/null
- result: Return count of records.
Patch IP
Bulk patch IP records.
Inputs to this Action:
- Connection: Choose a connection that you have created.
- Jinja Template for Query: Jinja-templated query containing query to use, jquery querybuilder complex search field. Example: {"condition":"AND","rules":[{"id":"table.id","field":"table.id","input":"text","type":"object","operator":"{{operator_column_name}}","value":"{{value_column_name}}"}]}.
- Affiliation State (Optional): Select option for affiliation state. (Default is empty string).
- Impact Score (Optional): Select option for impact score. (Default is empty string).
- Status (Optional): Select option for status. (Default is empty string).
- Jinja Template for Operation (Optional): Jinja-templated query containing operation, 'Path' and 'Value' are required with Operation.
- Jinja Template for Path (Optional): Jinja-templated query containing path for target location, 'Operation' and 'Value' are required with Path.
Output of Action:
A JSON object containing multiple rows of result:
- has_error: True/False
- error: message/null
- result: Return count of records.
Patch Network
Bulk patch network records.
Inputs to this Action:
- Connection: Choose a connection that you have created.
- Jinja Template for Query: Jinja-templated query containing query to use, jquery querybuilder complex search field. Example: {"condition":"AND","rules":[{"id":"table.id","field":"table.id","input":"text","type":"object","operator":"{{operator_column_name}}","value":"{{value_column_name}}"}]}.
- Affiliation State (Optional): Select option for affiliation state. (Default is empty string).
- Impact Score (Optional): Select option for impact score. (Default is empty string).
- Status (Optional): Select option for status. (Default is empty string).
- Jinja Template for Operation (Optional): Jinja-templated query containing operation, 'Path' and 'Value' are required with Operation.
- Jinja Template for Path (Optional): Jinja-templated query containing path for target location, 'Operation' and 'Value' are required with Path.
Output of Action:
A JSON object containing multiple rows of result:
- has_error: True/False
- error: message/null
- result: Return count of records.
Patch Social Entity
Bulk patch social entity records.
Inputs to this Action:
- Connection: Choose a connection that you have created.
- Jinja Template for Query: Jinja-templated query containing query to use, jquery querybuilder complex search field. Example: {"condition":"AND","rules":[{"id":"table.id","field":"table.id","input":"text","type":"object","operator":"{{operator_column_name}}","value":"{{value_column_name}}"}]}.
- Affiliation State (Optional): Select option for affiliation state. (Default is empty string).
- Authorization State (Optional): Select option for authorization state. (Default is empty string).
- Impact Score (Optional): Select option for impact score. (Default is empty string).
- Status (Optional): Select option for status. (Default is empty string).
- Jinja Template for Operation (Optional): Jinja-templated query containing operation, 'Path' and 'Value' are required with Operation.
- Jinja Template for Path (Optional): Jinja-templated query containing path for target location, 'Operation' and 'Value' are required with Path.
Output of Action:
A JSON object containing multiple rows of result:
- has_error: True/False
- error: message/null
- result: Return count of records.
Patch Target
Bulk patch target records.
Inputs to this Action:
- Connection: Choose a connection that you have created.
- Jinja Template for Query: Jinja-templated query containing query to use, jquery querybuilder complex search field. Example: {"condition":"AND","rules":[{"id":"table.id","field":"table.id","input":"text","type":"object","operator":"{{operator_column_name}}","value":"{{value_column_name}}"}]}.
- Affiliation State (Optional): Select option for affiliation state. (Default is empty string).
- Authorization State (Optional): Select option for authorization state. (Default is empty string).
- Impact Score (Optional): Select option for impact score. (Default is empty string).
- Status (Optional): Select option for status. (Default is empty string).
- Jinja Template for Operation (Optional): Jinja-templated query containing operation, 'Path' and 'Value' are required with Operation.
- Jinja Template for Path (Optional): Jinja-templated query containing path for target location, 'Operation' and 'Value' are required with Path.
Output of Action:
A JSON object containing multiple rows of result:
- has_error: True/False
- error: message/null
- result: Return count of records.
doc.txt
Displaying doc.txt.
Release Notes
v2.0.0- Updated architecture to support IO via filesystem
Updated about 1 year ago