FireEye Detection on Demand

FireEye Detection On Demand is a threat detection service delivered as an API for integration into the SOC workflow, SIEM analytics, data repositories, or web applications, etc. It delivers flexible file and content analysis to identify malicious behavior wherever the enterprise needs it.

Forensics & Malware Analysis · FireEye Detection on Demand

Configuration parameters

  • url — DoD hostname (required)
  • apikey — API Key (required)
  • insecure — Trust any certificate (not secure)
  • proxy — Use system proxy settings

Commands (5)

  • fireeye-dod-get-hashes

    Queries FireEye Detection on Demand reports for the provided md5 hashes.

  • fireeye-dod-get-report-url

    Generates a pre-signed URL for a report.

  • fireeye-dod-get-reports

    Retrieves one or more reports of file scans.

  • fireeye-dod-submit-file

    Submits file to FireEye Detection on Demand for analysis.

  • fireeye-dod-submit-urls

    Submits URLs to FireEye Detection on Demand for analysis.