AutoFocus Daily Feed

Use the AutoFocus Feeds integration to fetch indicators from AutoFocus. For more information click here.

Configure AutoFocus Feed on Demisto

  1. Navigate to Settings > Integrations > Servers & Services.
  2. Search for AutoFocus Feed.
  3. Click Add instance to create and configure a new integration instance.
ParameterDescriptionRequired
feedThe fetch indicators.False
api_keyThe AutoFocus API key.True
feedReputationThe indicator reputation.False
feedReliabilityThe source's reliability.True
tlp_colorThe Traffic Light Protocol (TLP) designation to apply to indicators fetched from the feed. More information about the protocol can be found at https://us-cert.cisa.gov/tlpFalse
feedExpirationPolicyThe feed's expiration policy.False
feedExpirationIntervalThe interval after which the feed expires.False
feedFetchIntervalThe feed fetch interval.False
feedBypassExclusionListWhether to bypass exclusion list.False
insecureWhether to trust any certificate (not secure).False
proxyWhether to use the system proxy settings.False
  1. Click Test to validate the URLs, token, and connection.

Commands

You can execute these commands from the Demisto CLI, as part of an automation, or in a playbook. After you successfully execute a command, a DBot message appears in the War Room with the command details.

Get Indicators

Gets the indicators from AutoFocus.

Note: This command does not create indicators within Cortex XSOAR.

Base Command

autofocus-get-indicators

Input
Argument NameDescriptionRequired
limitThe maximum number of indicators to return. The default value is 10.Optional
offsetThe index of the first indicator to fetch.Optional
Context Output

There is no context output for this command.

Command Example

!autofocus-get-indicators limit=4

Human Readable Output

Indicators from AutoFocus:

ValueType
demisto\<Span>.comDomain
{file hash}File
8.8.8.8IP
demsito\<Span>.com/some/aditional/pathURL

To bring the next batch of indicators run: !autofocus-get-indicators limit=4 offset=4

Edit this page
Report an Issue