AbuseIPDB 2.0.4
- 03 Apr 2025
- 2 Minutes to read
- DarkLight
- PDF
AbuseIPDB 2.0.4
- Updated on 03 Apr 2025
- 2 Minutes to read
- DarkLight
- PDF
Article summary
Did you find this summary helpful?
Thank you for your feedback!
AbuseIPDB - 2.0.4
tags: python | Enrichment | IP Reputation | IP GeoLocation Maps | Adaptive Cards
Table of Contents
- Description
- CDC Command Lines
- Workflows
- Rules
- Sensors
- Triggers
- Known Issues
- [Change Log](#markdown-header-change Log)
Description
Integration with AbuseIPDB is created to support CDC users by providing enrichments for specific IP addresses. This is done to determine if it is identified to be engaged in any malicious activities such as abusive usage, hacking, spam, etc. - which enable CDC users to make informed decisions regarding incident response.
AbuseIPDB helps make the web safer by providing a central repository for webmasters, system administrators, and other interested parties to identify IP addresses that have been associated with malicious activity online.
CyberProof uses custom adaptive cards to display large amounts of threat data in a meaningful and intuitive GUI, to facilitate easy understanding of complex enriched data about a particular IP.
| Integration Type: | Threat Intelligence Enrichment |
| Information read: | IP Address reputation |
| API Supported: | API V2 |
| Input: | IP Address to be enriched |
| Output: | Details enriched information about IP provided in Input |
| Classification: | Public |
CDC Command Lines
* **enrich_ip_cli**
Get information from AbuseIPDB about certain IPs.
| Option | Type | Description | Required |
|---|---|---|---|
| metadata | object | command metadata | False |
| ip | string | The IP address should be v4 or v6. | True |
* **enrich_range_ips_cli**
Get information from AbuseIPDB about a certain network.
| Option | Type | Description | Required |
|---|---|---|---|
| metadata | object | command metadata | False |
| network | string | The IP address to enrich as CIDR format. | True |
* **report_ip_cli**
Report an IP in AbuseIPDB.
| Option | Type | Description | Required |
|---|---|---|---|
| metadata | object | command metadata | False |
| ip | string | The IP address should be v4 or v6. | True |
| category | string | A string of comma separated malware categories. | True |
| comment | string | The reason to report this IP in free text. | True |
Workflows
No workflows
Rules
No rules
Sensors
No sensors
Triggers
No triggers
Known Issues
No issues
Change Log
| Pack Version | Date of Merge | Changes |
|---|---|---|
| v2.0.1 | 2023-01-17 | Integration of sonar analysis in pipeline Integration of quality gate in pipeline Defining sonar properties Fixed sonar raised issues in the pack |
| v2.0.0 | 2023-01-16 | As we had to do back end API actions replacements, so in this version we did that change. |
| v1.3.0 | 2022-09-13 | Modified change in action to expose clis on LA. Added schema. Unit test case fixes |
| v1.2.3 | 2022-04-28 | Readme related updates. UCA common logic version updates. |
| v1.2.2 | 2022-04-13 | UCA common logic version updates. Make latest changes in Bitbucket pipeline. |
| v1.2.1 | 2022-03-01 | updated documentation as suggested for Doc360 Adding Doc360 pipeline Updating common logic version |
Was this article helpful?