Indicator Parser

Parse indicators from text using the system regexes available via the API.

The API endpoint to get the system regexes is documented here.

Dependencies

Documentation

Triggers

  • PipeConfig

Variables Declared in the Playbook

The following variables are declared in this playbook:

  • addressRegexUrl: /v2/types/indicatorTypes/Address
  • emailAddressRegexUrl: /v2/types/indicatorTypes/EmailAddress
  • fileRegexUrl: /v2/types/indicatorTypes/File
  • hostRegexUrl: /v2/types/indicatorTypes/Host
  • urlRegexUrl: /v2/types/indicatorTypes/Url
  • errorMessagePrefix: [Indicator Parser PB]: