Skip to main content

Workflow Template: Analyze URLs with ANY.RUN Sandbox

Submit a URL to ANY.RUN Sandbox for analysis and receive a structured JSON report with verdict, IoCs, and enrichment summary.

The "Analyze URLs with ANY.RUN Sandbox" workflow template is designed to enhance web security and threat intelligence by automating the analysis of URLs. By submitting a URL to the ANY.RUN Sandbox, users receive a comprehensive JSON report that includes a verdict, extracted Indicators of Compromise (IoCs), and an enrichment summary. This workflow is ideal for functions such as phishing detection and remediation of web security alerts, providing valuable insights for threat intelligence enrichment.

Take Me to the Template

Use Cases

Function , Phishing , Remediate Web Security Alerts , Threat Intelligence Enrichment

Workflow Breakdown

  1. Workflow accepts a URL as an input parameter.

  2. The URL is submitted to the ANY.RUN Sandbox for a new analysis.

  3. The completed analysis report is retrieved and a sandbox summary is generated.

  4. Indicators of Compromise (IPs, URLs, file hashes) are extracted from the analysis.

  5. A final enrichment summary is produced, combining the report details with the extracted IoCs as the workflow output.

Vendors

Utils, ANY.RUN

Workflow Output

ANY.RUN Sandbox analysis report and verdict, and extracted IOCs.

Related Articles
Workflow Template: Analyze Files in Netskope Sandbox with Cache
Workflow Template: Analyze URLs and Files in Recorded Future Sandbox
Workflow Template: Analyze Files with ANY.RUN Sandbox
Workflow Template: Enrich Case with File Analysis in ANY.RUN Sandbox
Workflow Template: Enrich Case with URL Analysis in ANY.RUN Sandbox
Did this answer your question?