CP4S: How to test Recorded Future Threat Intelligence Source.

How To

Summary

How can I confirm my Recorded Future Threat Intelligence source API validation?

Steps

In the CLI prompt run:

curl -H "X-RFToken: [API token]" "https://api.recordedfuture.com/v2/ip/IPTARGET?fields=risk"

Note: IPTARGET is your wanted IP target.

With the correct Recorded future key as a token, it returns information.

If the result is 401 it means that the key is either expired or invalid.

Example:

{"error":{"status":401}}

Related Information

Configuring Threat Intelligence Insights external data sources

Document Location

Worldwide

[{"Type":"MASTER","Line of Business":{"code":"LOB24","label":"Security Software"},"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSTDPP","label":"IBM Cloud Pak for Security"},"ARM Category":[{"code":"a8m0z0000001jrwAAA","label":"Threat Intelligence Insights"}],"ARM Case Number":"","Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"All Versions"}]

Tips

CP4S: How to test Recorded Future Threat Intelligence Source.

How To

Summary

Steps

Related Information

Document Location

Was this topic helpful?

Document Information

UID

Share your feedback

Need support?