Enricher - OpenResolve#
Note
This article describes how to configure a particular enrichment source. To see how to configure enrichers in general, see Configure enrichers.
Specifications |
|
|---|---|
Enricher name |
OpenResolve |
Input |
Domain, host, and IP addresses (ipv4 and ipv6). |
Output |
Enriches supported observable types with reverse-DNS lookup information. |
API endpoint |
|
Description |
OpenResolve by Cisco OpenDNS offers a REST API to use DNS resolvers and to retrieve reverse-DNS lookup information. |
Note
The OpenDNS OpenResolve enricher has no specific parameters to configure.
If the REST API returns 404 or a 5xx HTTP status code, the enricher handles the exception as a response returning no data.
Configure the enricher parameters#
Edit the enricher.
From the Observable types drop-down menu, select one or more observable types you want to enrich with data retrieved through the OpenDNS OpenResolve enricher.
The API URL field is automatically filled in with the default domain for the endpoint.
You can add a proxy or set up ports according to your needs.
Default value:https://api.openresolve.com.To store your changes, click Save; to discard them, click Cancel.