From f3a91d9fcd097e5bfa966dcef47b4b4d2fb1f061 Mon Sep 17 00:00:00 2001 From: weslambert Date: Tue, 3 May 2022 10:10:57 -0400 Subject: [PATCH] Add EmailRep analyzer to observable support matrix --- salt/sensoroni/files/analyzers/README.md | 21 +++++++++++---------- 1 file changed, 11 insertions(+), 10 deletions(-) diff --git a/salt/sensoroni/files/analyzers/README.md b/salt/sensoroni/files/analyzers/README.md index 425fd5130..bbc4b35ff 100644 --- a/salt/sensoroni/files/analyzers/README.md +++ b/salt/sensoroni/files/analyzers/README.md @@ -5,16 +5,17 @@ Security Onion provides a means for performing data analysis on varying inputs. ## Supported Observable Types The built-in analyzers support the following observable types: -| Name | Domain | Hash | IP | JA3 | Other | URI | URL | User Agent | -| ------------------------|--------|-------|-------|-------|-------|-------|-------|-------| -| Alienvault OTX |✓ |✓|✓|✗|✗|✗|✓|✗| -| Greynoise |✗ |✗|✓|✗|✗|✗|✗|✗| -| JA3er |✗ |✗|✗|✓|✗|✗|✗|✗| -| LocalFile |✓ |✓|✓|✓|✓|✗|✓|✗| -| Pulsedive |✓ |✓|✓|✗|✗|✓|✓|✓| -| Spamhaus |✗ |✗|✓|✗|✗|✗|✗|✗| -| Urlhaus |✗ |✗|✗|✗|✗|✗|✓|✗| -| Virustotal |✓ |✓|✓|✗|✗|✗|✓|✗| +| Name | Domain | Hash | IP | JA3 | Mail | Other | URI | URL | User Agent | +| ------------------------|--------|-------|-------|-------|-------|-------|-------|-------|------------ +| Alienvault OTX |✓ |✓|✓|✗|✗|✗|✗|✓|✗| +| EmailRep |✗ |✗|✗|✗|✓|✗|✗|✗|✗| +| Greynoise |✗ |✗|✓|✗|✗|✗|✗|✗|✗| +| JA3er |✗ |✗|✗|✓|✗|✗|✗|✗|✗| +| LocalFile |✓ |✓|✓|✓|✗|✓|✗|✓|✗| +| Pulsedive |✓ |✓|✓|✗|✗|✗|✓|✓|✓| +| Spamhaus |✗ |✗|✓|✗|✗|✗|✗|✗|✗| +| Urlhaus |✗ |✗|✗|✗|✗|✗|✗|✓|✗| +| Virustotal |✓ |✓|✓|✗|✗|✗|✗|✓|✗| ## Developer Guide