About the connector
Quttera helps to scan websites/domains for malware, SSL certificates, and open ports.
This document provides information about the Quttera connector, which facilitates automated interactions, with a Quttera server using FortiSOAR™ playbooks. Add the Quttera Connector as a step in FortiSOAR™ playbooks and perform automated operations with Quttera such as starting a new scan for malware on the specified domain/website, retrieving the status of the specific domain/website integrity scan request from Quttera, or retrieving a detailed blacklist report of the specified domain/URL from Quttera.
Version information
Connector Version: 1.0.0
Authored By: Community
Certified: No
Installing the connector
Use the Content Hub to install the connector. For the detailed procedure to install a connector, click here.
You can also use the following yum command as a root user to install connectors from an SSH session:
yum install cyops-connector-quttera
Prerequisites to configuring the connector
- You must have the URL of the Quttera server to which you will connect and perform automated operations and the API key to access the Quttera API.
- The FortiSOAR™ server should have outbound connectivity to port 443 on the Quttera server.
Minimum Permissions Required
Configuring the connector
For the procedure to configure a connector, click here.
Configuration parameters
In FortiSOAR™, on the Content Hub (or Connector Store) page, click the Manage tab, and then click the Quttera connector card. On the connector popup, click the Configurations tab to enter the required configuration details.
| Parameter |
Description |
| Server URL |
Specify the URL of the Quttera server to which you will connect and perform automated operations. |
| API Key |
Specify the API Key to access the Quttera API. |
| Verify SSL |
Specifies whether the SSL certificate for the server is to be verified or not.
By default, this option is set as True. |
Actions supported by the connector
The following automated operations can be included in playbooks and you can also use the annotations to access operations:
| Function |
Description |
Annotation and Category |
| Start URL Scan |
Starts a new scan for malware on the specified domain/website. |
start_url_scan
Investigation |
| Get Status of URL Scan |
Retrieves the status of the specific domain/website scan request from Quttera based on the domain/URL you have specified. |
get_status_of_url_scan
Investigation |
| Get Report of URL Scan |
Retrieves the detailed scan report of a specific domain/website scan from Quttera based on the domain/URL you have specified. |
get_report_of_url_scan
Investigation |
| Start SSL Scan |
Starts a new scan for the SSL certificate of the specified website. |
start_ssl_scan
Investigation |
| Get Status of SSL Scan |
Retrieves the status of the specific domain/website SSL certificate scan request from Quttera based on the domain/URL you have specified. |
get_status_of_ssl_scan
Investigation |
| Get Report of SSL Scan |
Retrieves the detailed scan report of a specific domain/website SSL scan from Quttera based on the domain/URL you have specified. |
get_report_of_ssl_scan
Investigation |
| Start Integrity Scan |
Starts a new scan for integrity issues of the specified website. |
start_integrity_scan
Investigation |
| Get Status of Integrity Scan |
Retrieves the status of the specific domain/website integrity scan request from Quttera based on the domain/URL you have specified. |
get_status_of_integrity_scan
Investigation |
| Get Report of Integrity Scan |
Retrieves the detailed scan report of a specific domain/website integrity scan from Quttera based on the domain/URL you have specified. |
get_report_of_integrity_scan
Investigation |
| Start Port Scan |
Starts a new scan for ports of the specified website. |
start_port_scan
Investigation |
| Get Status of Port Scan |
Retrieves the status of the specific domain/website port scan request from Quttera based on the domain/URL you have specified. |
get_status_of_port_scan
Investigation |
| Get Report of Port Scan |
Retrieves information of open ports of the specified domain/website integrity scan from Quttera based on the domain/URL you have specified. |
get_report_of_port_scan
Investigation |
| Get Blacklist Status |
Retrieves the blacklisting status of the specified domain/URL from Quttera. |
get_blacklist_status
Investigation |
| Get Blacklist Report |
Retrieves a detailed blacklist report of the specified domain/URL from Quttera. |
get_blacklist_report
Investigation |
operation: Start URL Scan
Input parameters
| Parameter |
Description |
| Domain/URL Name |
Specify the domain/URL on which you want to start a scan for malware using Quttera. |
| Response Format |
(Optional) Select the format of the response. You can choose between Json (Default), Xml, or Yaml.
|
Output
The output contains a non-dictionary value.
operation: Get Status of URL Scan
Input parameters
| Parameter |
Description |
| Domain/URL Name |
Specify the domain/URL whose scan status you want to fetch from Quttera. |
| Response Format |
(Optional) Select the format of the response. You can choose between Json (Default), Xml, or Yaml. |
Output
The output contains a non-dictionary value.
operation: Get Report of URL Scan
Input parameters
| Parameter |
Description |
| Domain/URL Name |
Specify the domain/URL whose detailed scan report you want to fetch from Quttera. |
| Response Format |
(Optional) Select the format of the response. You can choose between Json (Default), Xml, or Yaml. |
Output
The output contains a non-dictionary value.
operation: Start SSL Scan
Input parameters
| Parameter |
Description |
| Domain/URL Name |
Specify the domain/URL on which you want to start an SSL certificate scan using Quttera. |
| Response Format |
(Optional) Select the format of the response. You can choose between Json (Default), Xml, or Yaml. |
Output
The output contains a non-dictionary value.
operation: Get Status of SSL Scan
Input parameters
| Parameter |
Description |
| Domain/URL Name |
Specify the domain/URL whose SSL scan status you want to fetch from Quttera. |
| Response Format |
(Optional) Select the format of the response. You can choose between Json (Default), Xml, or Yaml. |
Output
The output contains a non-dictionary value.
operation: Get Report of SSL Scan
Input parameters
| Parameter |
Description |
| Domain/URL Name |
Specify the domain/URL whose detailed SSL scan report you want to fetch from Quttera. |
| Response Format |
(Optional) Select the format of the response. You can choose between Json (Default), Xml, or Yaml |
Output
The output contains a non-dictionary value.
operation: Start Integrity Scan
Input parameters
| Parameter |
Description |
| Domain/URL Name |
Specify the domain/URL on which you want to start an integrity scan using Quttera. |
| Response Format |
(Optional) Select the format of the response. You can choose between Json (Default), Xml, or Yaml |
Output
The output contains a non-dictionary value.
operation: Get Status of Integrity Scan
Input parameters
| Parameter |
Description |
| Domain/URL Name |
Specify the domain/URL whose integrity scan status you want to fetch from Quttera. |
| Response Format |
(Optional) Select the format of the response. You can choose between Json (Default), Xml, or Yaml |
Output
The output contains a non-dictionary value.
operation: Get Report of Integrity Scan
Input parameters
| Parameter |
Description |
| Domain/URL Name |
Specify the Domain/URL whose detailed integrity scan report you want to fetch from Quttera. |
| Response Format |
(Optional) Select the format of the response. You can choose between Json (Default), Xml, or Yaml. |
Output
The output contains a non-dictionary value.
operation: Start Port Scan
Input parameters
| Parameter |
Description |
| Domain/URL Name |
Specify the domain/URL on which you want to start a port scan using Quttera. |
| Response Format |
(Optional) Select the format of the response. You can choose between Json (Default), Xml, or Yaml. |
Output
The output contains a non-dictionary value.
operation: Get Status of Port Scan
Input parameters
| Parameter |
Description |
| Domain/URL Name |
Specify the domain/URL whose port scan status you want to fetch from Quttera. |
| Response Format |
(Optional) Select the format of the response. You can choose between Json (Default), Xml, or Yaml. |
Output
The output contains a non-dictionary value.
operation: Get Report of Port Scan
Input parameters
| Parameter |
Description |
| Domain/URL Name |
Specify the Domain/URL whose detailed port scan report, containing open port information, you want to fetch from Quttera. |
| Response Format |
(Optional) Select the format of the response. You can choose between Json (Default), Xml, or Yaml. |
Output
The output contains a non-dictionary value.
operation: Get Blacklist Status
Input parameters
| Parameter |
Description |
| Domain/URL Name |
Specify the Domain/URL whose blacklist status you want to fetch from Quttera. |
| Response Format |
(Optional) Select the format of the response. You can choose between Json (Default), Xml, or Yaml. |
Output
The output contains a non-dictionary value.
operation: Get Blacklist Report
Input parameters
| Parameter |
Description |
| Domain/URL Name |
Specify the Domain/URL whose blacklist report you want to fetch from Quttera. |
| Response Format |
(Optional) Select the format of the response. You can choose between Json (Default), Xml, or Yaml. |
Output
The output contains a non-dictionary value.
Included playbooks
The Sample - Quttera - 1.0.0 playbook collection comes bundled with the Quttera connector. These playbooks contain steps using which you can perform all supported actions. You can see bundled playbooks in the Automation > Playbooks section in FortiSOAR™ after importing the Quttera connector.
- Get Blacklist Report
- Get Blacklist Status
- Get Report of Integrity Scan
- Get Report of Port Scan
- Get Report of SSL Scan
- Get Report of URL Scan
- Get Status of Integrity Scan
- Get Status of Port Scan
- Get Status of SSL Scan
- Get Status of URL Scan
- Start Integrity Scan
- Start Port Scan
- Start SSL Scan
- Start URL Scan
Note: If you are planning to use any of the sample playbooks in your environment, ensure that you clone those playbooks and move them to a different collection since the sample playbook collection gets deleted during connector upgrade and delete.
