Skip to content

Onyphe

Onyphe

Onyphe is a Cyber Defense Search Engine for open-source and cyber threat intelligence data collected by crawling various sources available on the Internet or by listening to Internet background noise

Configuration

Name Type Description
apikey string APIKEY for Onyphe

Actions

Get Domain Name CTLs

Get domain name X509 certificate information from Certificate Transparency Logs (CTLs) with Onyphe

Arguments

Name Type Description
domain string The domain to scan
budget integer Maximum number of pages to retrieve
first_page integer Start retrieving data from this page

Outputs

Name Type Description
count integer Number of elements in results
error integer Error code, 0 for no error
message string Error message, only if error is not 0
myip string IP from which the request is made
results array array of data
status string Status of the request: ok/nok
took string Time to serve the request
total integer Total number of pieces of information, only up to 10000 are returned in results
max_page integer Maximal number of pages
page integer Last page requested

Get IP Datascan

Get datascan information on IP with Onyphe: "Application responses to [Onyphe's] application requests"

Arguments

Name Type Description
ip string The ip to scan. Exactly one of 'ip' or 'string' must be specified
string string The string to scan. Exactly one of 'ip' or 'string' must be specified
budget integer Maximum number of pages to retrieve
first_page integer Start retrieving data from this page

Outputs

Name Type Description
count integer Number of elements in results
error integer Error code, 0 for no error
message string Error message, only if error is not 0
myip string IP from which the request is made
results array array of data
status string Status of the request: ok/nok
took string Time to serve the request
total integer Total number of pieces of information, only up to 10000 are returned in results
max_page integer Maximal number of pages
page integer Last page requested

Lookup Forward DNS

Get forward DNS lookup information on IP with Onyphe

Arguments

Name Type Description
ip string The ip to scan
budget integer Maximum number of pages to retrieve
first_page integer Start retrieving data from this page

Outputs

Name Type Description
count integer Number of elements in results
error integer Error code, 0 for no error
message string Error message, only if error is not 0
myip string IP from which the request is made
results array array of data
status string Status of the request: ok/nok
took string Time to serve the request
total integer Total number of pieces of information, only up to 10000 are returned in results
max_page integer Maximal number of pages
page integer Last page requested

Geolocalize IP

Geo-localize ip with Onyphe

Arguments

Name Type Description
ip string The ip to scan

Outputs

Name Type Description
count integer Number of elements in results
error integer Error code, 0 for no error
message string Error message, only if error is not 0
myip string IP from which the request is made
results array array of data
status string Status of the request: ok/nok
took string Time to serve the request
total integer Total number of pieces of information, only up to 10000 are returned in results

Get IP Inetnum

Get inetnum information on IP with Onyphe: "IP (v4 and v6) networks description as given by RIRs (Regional Internet Registries), except for the United States which does not disclose that information publicly."

Arguments

Name Type Description
ip string The ip to scan
budget integer Maximum number of pages to retrieve
first_page integer Start retrieving data from this page

Outputs

Name Type Description
count integer Number of elements in results
error integer Error code, 0 for no error
message string Error message, only if error is not 0
myip string IP from which the request is made
results array array of data
status string Status of the request: ok/nok
took string Time to serve the request
total integer Total number of pieces of information, only up to 10000 are returned in results
max_page integer Maximal number of pages
page integer Last page requested

Lookup IP

Get information on IP with Onyphe

Arguments

Name Type Description
ip string The ip to scan
budget integer Maximum number of pages to retrieve
first_page integer Start retrieving data from this page

Outputs

Name Type Description
count integer Number of elements in results
error integer Error code, 0 for no error
message string Error message, only if error is not 0
myip string IP from which the request is made
results array array of data
status string Status of the request: ok/nok
took string Time to serve the request
total integer Total number of pieces of information, only up to 10000 are returned in results
max_page integer Maximal number of pages
page integer Last page requested

Lookup MD5

Get Onyphe datascans with the given md5 in the datamd5 field

Arguments

Name Type Description
md5 string The md5 to scan
budget integer Maximum number of pages to retrieve
first_page integer Start retrieving data from this page

Outputs

Name Type Description
count integer Number of elements in results
error integer Error code, 0 for no error
message string Error message, only if error is not 0
myip string IP from which the request is made
results array array of data
status string Status of the request: ok/nok
took string Time to serve the request
total integer Total number of pieces of information, only up to 10000 are returned in results
max_page integer Maximal number of pages
page integer Last page requested

Get Onion Scan

Get information on the given onion domain with Onyphe

Arguments

Name Type Description
onion string The onion domain to scan
budget integer Maximum number of pages to retrieve
first_page integer Start retrieving data from this page

Outputs

Name Type Description
count integer Number of elements in results
error integer Error code, 0 for no error
message string Error message, only if error is not 0
myip string IP from which the request is made
results array array of data
status string Status of the request: ok/nok
took string Time to serve the request
total integer Total number of pieces of information, only up to 10000 are returned in results
max_page integer Maximal number of pages
page integer Last page requested

Get Pastries

Get pastries information collected by Onyphe on pastebin.com

Arguments

Name Type Description
ip string The ip to scan
budget integer Maximum number of pages to retrieve
first_page integer Start retrieving data from this page

Outputs

Name Type Description
count integer Number of elements in results
error integer Error code, 0 for no error
message string Error message, only if error is not 0
myip string IP from which the request is made
results array array of data
status string Status of the request: ok/nok
took string Time to serve the request
total integer Total number of pieces of information, only up to 10000 are returned in results
max_page integer Maximal number of pages
page integer Last page requested

Lookup Reverse DNS

Get reverse DNS lookup information on IP with Onyphe

Arguments

Name Type Description
ip string The ip to scan
budget integer Maximum number of pages to retrieve
first_page integer Start retrieving data from this page

Outputs

Name Type Description
count integer Number of elements in results
error integer Error code, 0 for no error
message string Error message, only if error is not 0
myip string IP from which the request is made
results array array of data
status string Status of the request: ok/nok
took string Time to serve the request
total integer Total number of pieces of information, only up to 10000 are returned in results
max_page integer Maximal number of pages
page integer Last page requested

Get IP Sniffer

Get sniffer information on IP with Onyphe: "[Onyphe has] a number of distributed honeypots on the Internet. [They] are listening to Internet background noise and performing passive operating system identification"

Arguments

Name Type Description
ip string The ip to scan
budget integer Maximum number of pages to retrieve
first_page integer Start retrieving data from this page

Outputs

Name Type Description
count integer Number of elements in results
error integer Error code, 0 for no error
message string Error message, only if error is not 0
myip string IP from which the request is made
results array array of data
status string Status of the request: ok/nok
took string Time to serve the request
total integer Total number of pieces of information, only up to 10000 are returned in results
max_page integer Maximal number of pages
page integer Last page requested

Get IP Syn Scan

Get synscan information on IP with Onyphe: "Open TCP ports found on the Internet. Each open port is also enriched with detected operating system"

Arguments

Name Type Description
ip string The ip to scan
budget integer Maximum number of pages to retrieve
first_page integer Start retrieving data from this page

Outputs

Name Type Description
count integer Number of elements in results
error integer Error code, 0 for no error
message string Error message, only if error is not 0
myip string IP from which the request is made
results array array of data
status string Status of the request: ok/nok
took string Time to serve the request
total integer Total number of pieces of information, only up to 10000 are returned in results
max_page integer Maximal number of pages
page integer Last page requested

Get IP Threat List

Get threatlist information on IP with Onyphe

Arguments

Name Type Description
ip string The ip to scan
budget integer Maximum number of pages to retrieve
first_page integer Start retrieving data from this page

Outputs

Name Type Description
count integer Number of elements in results
error integer Error code, 0 for no error
message string Error message, only if error is not 0
myip string IP from which the request is made
results array array of data
status string Status of the request: ok/nok
took string Time to serve the request
total integer Total number of pieces of information, only up to 10000 are returned in results
max_page integer Maximal number of pages
page integer Last page requested

Extra

Module Onyphe v1.12