Connect this data source on your own, using the Hunters platform.
TL;DR
Supported data types | 3rd party detection | Hunters detection | IOC search | Search | Table name | Log format | Collection method |
|---|---|---|---|---|---|---|---|
ZeroFox Alerts | ✅ | ✅ | zerofox_alerts | NDJSON | API |
Overview
ZeroFox is a cybersecurity platform that provides external threat intelligence and digital risk protection. It monitors the surface, deep, and dark web for threats targeting organizations, including phishing attacks, brand impersonation, data leaks, and social media threats. Using AI-driven analysis, ZeroFox identifies risks, automates threat remediation, and helps organizations protect their brand, employees, and customers from cyberattacks. Its platform integrates with security operations to provide real-time alerts and proactive defense against external threats.
Supported data types
ZeroFox Alerts
Table name: zerofox_alerts
ZeroFox alerts provide real-time notifications of potential threats, such as brand impersonation, phishing attacks, malware distribution, account takeover attempts, and data breaches, among others. These alerts are generated based on sophisticated threat intelligence and analysis of digital signals, enabling organizations to proactively identify and respond to emerging threats.
Send data to Hunters
Hunters supports the collection of logs from ZeroFox using API.
📘Note
To use the ZeroFox API you first need to have a user account that is associated with a ZeroFox Customer Enterprise.
To connect ZeroFox logs:
Retrieve your API token from ZeroFox.
Complete the process on the Hunters platform, following this guide.