Active Indicators Search

Active Indicator Search is located at Research > Active Indicators and is different is than Dossier search, which only returns data from the database. Indicator search is not limited to a specific indicator (e.g., a hostname). The search interface currently returns a maximum of 25,000 results. There is no limit to the number of records that can be returned via API. Therefore, it is recommended to use the API for larger data sets.

Open

Image: The Active Indicators Search page inside the Cloud Services Portal.

Due to the size of the available data, it is recommended to apply filters to limit the resulting dataset. NOTE: When a keyword is used to search data, other filters are not applied even if they were specified.

The resulting dataset can be exported in XML, CSV or JSON format.

Back to top of page