The "Recorded Future Sandbox - Analyze Files and URLs" workflow template is designed for businesses requiring thorough analysis of various internet-based resources. It seamlessly integrates raw input, such as URLs or file paths, into a sophisticated evaluation process utilizing Recorded Future Sandbox. The system expertly analyzes each input as either a file or a website, caches results to streamline repeat inquiries, and harnesses nested workflows for efficient data processing, ensuring a comprehensive analysis outcome. This workflow is particularly suitable for organizations committed to strengthening their cybersecurity by enriching threat intelligence, enabling them to accurately assess potential risks associated with files and web resources.
Optional Triggers
"This workflow is intended to be used as a nested workflow."
Use Cases
Function, Threat Intelligence Enrichment
Workflow Breakdown
Receives raw text and input and extracts URL Address and TQfile Address.
Send observable to nested functions to be analyzed and the results cached.
URLs can be analyzed as Files or Websites.
TQfiles are analized only as files.
Vendors
Scripting, Utils, Torq, Recorded Future Sandbox
Workflow Output
A list of analysis results. Each item can contain the original analysis data and a summary.
Tips
Set \"Provide Raw Data Analysis\" to true or false to add or remove original vendor information to the output