trellix-nx-malwares
Fetch malwares for host from Trellix Network Security devices
trellix-nx-malwares field=FIELD
- field=FIELD
- host IP field name
Output Fields
| Field | Type | Name | Description |
|---|---|---|---|
| profile | String | Connect profile | |
| md5 | String | MD5 | |
| malware_id | String | Malware ID | |
| count | String | Count | |
| encoding | String | Encoding | |
| last_analysis_time | String | Last analysis time | |
| protocol_name | String | Protocol name | e.g. TCP (80) |
| download_url | String | Download URL | |
| details | String | Details | Includes id, protocol, download_url, header |
| _error | String | Error |