Sekoia is a SaaS SOC platform whose Intelligence (CTI) product delivers actionable threat intelligence, indicators, and context on adversary activity.
Torq enables quick and easy integration with Sekoia Intelligence, so you can automate anything and everything within moments. Torq's pre-built Sekoia Intelligence steps include:
Look Up IOC
List Feed Objects
Get Object by ID
Get Indicator Context
+11 more...
If you don't see a step you need, you can create your own in various ways, such as using the Send an HTTP Request step or Torq's Step Builder, and share it across your organization.
Use Sekoia Intelligence steps in a Torq workflow
Step One: Generate a Sekoia API key
Navigate to API Keys: In Sekoia, go to Settings > API Keys.
Create a key: Click New API key.
Name: Give the key a unique and meaningful name.
Description: Give the key a relevant description.
Valid until: Set an expiration date, or select No expiration.
Finalize: Click Next, assign the relevant permissions for the actions you want to perform in Torq workflows, and create the key.
Save information: Copy and save the API key for later use. The API key will not appear again.
Step Two: Create a Sekoia Intelligence steps integration in Torq
Navigate to integration: In Torq, go to Build > Integrations > Steps > Sekoia CTI and click Add.
Set up integration:
Give the integration a unique and meaningful name.
Add the API Key created earlier.
Specify the base URL for the API calls.
Finalize: Click Add to save.


