Skip to main content
All CollectionsTemplatesBasic
Silent Push - Domain Enrichment with Cache - Workflow Template
Silent Push - Domain Enrichment with Cache - Workflow Template

Receives an Domain from a parent workflow and query Silent Push for enrichment.

Updated over a week ago

This workflow template offers a solution for automating domain reputation inquiries as part of threat intelligence enrichment strategies. When given a domain, it first queries the local cache for recent reputation data. If cached data is present, it is promptly returned to eliminate unnecessary external API requests. Otherwise, the workflow reaches out to the Silent Push API for fresh domain reputation intelligence, summarizing the findings and storing them locally for future reference. This process enhances performance and provides timely threat context to security operations.

Optional Triggers

"This workflows is intended to be used as a function."

Use Cases

Function, Threat Intelligence Enrichment

Workflow Breakdown

  1. Receives a Domain as input.

  2. Lookup global variables for cached responses in the past 24 hours.

  3. If reputation is found on local cache, the saved data is returned to the parent workflow.

  4. When no reputation is found in cache, a summary of the analysis data is created and saved with the original api data.

Vendors

Utils, Torq, Silent Push

Workflow Output

Returns full analysis data and a summary of the information.

Tips

Set \"Provide Raw Data Analysis\" to true or false to add or remove original vendor information to the output

Did this answer your question?