View CSV Feeds

  • Freigeben Version: Australia
  • Aktualisiert 12. März 2026
  • 1 Minute Lesedauer

    • View the CSV Feeds that are configured in the base system.

    Vorbereitungen

    Role required: sn_sec_tisc.admin

    Prozedur

    1. Navigate to Workspaces > Threat Intelligence Security Center.
    2. Click on Integrations icon.
    3. Select CSV.
      The CSV feeds within the base system are explained in the following table.
      ThreatFeed Description URL
      PhishStats Phishing URLs from the past 30 days from PhishStats. https://phishstats.info/phish_score.csv
      Abuse.ch SSL Certificate Blacklist The SSL Certificate Blacklist (CSV) is a CSV that contains SHA1 Fingerprint of all SSL certificates blacklisted on SSLBL. https://sslbl.abuse.ch/blacklist/sslblacklist.csv
      Botnet C2 IP Blacklist An SSL certificate can be associated with one or more servers (IP address:port combination). SSLBL collects IP addresses that are running with an SSL certificate blacklisted on SSLBL. These are usually botnet Command&Control servers (C&C). SSLBL hence publishes a blacklist containing these IPs which can be used to detect botnet C2 traffic from infected machines towards the internet, leaving your network. https://sslbl.abuse.ch/blacklist/sslipblacklist.csv
      Phishtank online NA https://data.phishtank.com/data/online-valid.csv
    4. Click Edit to edit the feed.