FCTI

Download 15
Last updated May 15, 2022

fcti-malware-urls

Fetch malware urls from FCTI

fcti-malware-urls [proxy=PROXY] [duration=NUM{mon|w|d|h|m|s}] [from=yyyyMMddHHmmss] [to=yyyyMMddHHmmss]
proxy=PROXY
URL of the proxy server
duration=NUM{mon|w|d|h|m|s}
Scan only recent data. You should use s(second), m(minute), h(hour), d(day), mon(month) time unit. For example, 10s means data from 10 seconds earlier.
from=yyyyMMddHHmmss
Start time of range. yyyyMMddHHmmss format. If you omit time part, it will be padded by zero.
to=yyyyMMddHHmmss
End time of range. yyyyMMddHHmmss format. If you omit time part, it will be padded by zero.

Output Fields

FieldTypeNameDescription
_timeDateTime
categoryStringCategory
urlStringURLMalicious URL
importanceStringSeveritye.g. H (High), M (Medium), L (Low)
confirm_ynStringConfirm requeste.g. Y, N
confirm_statusStringConfirm status
organizationStringOrganization
writerStringAuthor
stix_idStringStix ID
shared_scopeStringShared scopee.g. ALL, FSI, BANK, INVEST, INSURANCE, NONBANK, CUSTOM