VulnCheck

VulnCheck is a Vulnerability Database integration. Vulnerability Database Data Source integrations are used during investigations to improve analysis and in interactive chat to help answer questions. They are optional, but enabling more tooling integrations enhances Dropzone analysis.

The Dropzone AI platform integrates with VulnCheck, a database that identifies and assess known cybersecurity vulnerabilities, providing information on their historical use by threat actors, ransomware and botnets, and whether IPs are actively exploiting them.

Create an API Key

VulnCheck requires an API key to enable.

To obtain an API Key, do the following:

Log into VulnCheck
Click your user profile in the top right, then click "Tokens & SSH Keys"

In the upper right, click "Create Token"

Label the token something memorable, such as Drozpone AI
Select the key Token Icon
Click "Create"

Record the value shown for use later in the Dropzone UI where it is called "API key"

Enable VulnCheck

To enable the Data Source integration, do the following:

Navigate to your Dropzone AI tenant home page e.g. https://mycompany.dropzone.app
In the bottom left hand corner, navigate to Settings > Integrations

Click "Available"

In the Search bar, search VulnCheck, then click "Configure"
Input the API Key
Click "Test & Save" to finish

If you have any errors engage your Dropzone AI support representative.

PreviousVision NextWHOIS

Last updated 29 days ago

Was this helpful?