Threat Lookup - Have I been pwned? workflow

Washington DC Security Management

Release

washingtondc

ft:locale

en-US

ft:publication_title

Washington DC Security Management

ft:clusterId

security

bundleId

security

workflow

Technology

Threat Lookup - Have I been pwned? workflow

Release version: Washingtondc

Updated February 1, 2024

1 minute to read

The Threat Lookup - Have I been pwned? workflow performs a lookup on selected observables. If the observables are of a type recognized by Have I been pwned?, the observables are scanned for malware, and the results are returned.

Before you begin

Role required: sn_si_admin

About this task

This workflow is triggered by the Security Operations Integration - Threat Lookup capability when you perform a threat lookup on one or more observables, and the Have I been pwned? implementation is selected. For more information, see Perform lookups on observables.

Threat Lookup - Have I been pwned? workflow

For information on the activities used by this workflow, see Common integration workflow activities.