Phishing Initiative

Integration version: 9.0

Credentials - API Key and Token Authorization

  1. First, to obtain your API Key, sign in to your PhisingInitiative Account.

    Phishing Initiative login
page

  2. Click on your username on the upper right side of the screen and choose API from the drop down menu.

  3. The page displaying your API Key and Authorization Request will appear. Copy your given API Key to use it as a part of the Authorization process further in configuring Phishing Initiative.

    Get API key
value

Configure Phishing Initiative integration in Google Security Operations SOAR

For detailed instructions on how to configure an integration in Google Security Operations SOAR, see Configure integrations.

Actions

Get URL Status

Description

Get the status of a URL.

Parameters

N/A

Use cases

N/A

Run On

This action runs on the URL entity.

Action Results

Entity Enrichment
Enrichment Field Name Logic - When to apply
url Returns if it exists in JSON result
tag Returns if it exists in JSON result
tag_label Returns if it exists in JSON result
Insights

N/A

Script Result
Script Result Name Value Options Example
is_phishing True/False is_phishing:False
JSON Result
[
    {
        "EntityResult": {
            "url": "https: //www.dieutribenhkhop.com",
            "tag": -1,
            "tag_label": "notsubmitted"
        },
        "Entity": "https: //www.dieutribenhkhop.com"
    },{
        "EntityResult": {
            "url": "http: //markossolomon.com/f1q7qx.php",
            "tag": -1,
            "tag_label": "notsubmitted"
        },
        "Entity": "HTTP: //MARKOSSOLOMON.COM/F1Q7QX.PHP"
    }
]

Ping

Description

Test Connectivity.

Parameters

N/A

Use cases

N/A

Run On

This action runs on all entities.

Action Results

Entity Enrichment

N/A

Insights

N/A

Script Result
Script Result Name Value Options Example
is_success True/False is_success:False
JSON Result
N/A