This Torq workflow template leverages the Pangea platform for Threat Intelligence Enrichment by receiving a file hash input, consulting global variables for any cached reputations from the past 24 hours, and performing real-time Pangea lookups when not cached. It optimizes response times and efficiency by storing and reusing recent reputation data. Upon completion, it returns detailed analysis data, along with a synthesized summary of the file's reputation for informed decision-making on potential security threats.
Optional Triggers
"This workflows is intended to be used as a function."
Use Cases
Function, Threat Intelligence Enrichment
Workflow Breakdown
Receives a File Hash as input.
Lookup global variables for cached responses in the past 24 hours.
Lookup global variables for cached responses in the past 24 hours.
When no reputation is found in cache, a summary of the analysis data is created and saved with the original api data.
Vendors
Utils, Torq, Pangea
Workflow Output
Returns full analysis data and a summary of the information.
Tips
Set \"Provide Raw Data Analysis\" to true or false to add or remove original vendor information to the output