View CSV Feeds

  • Rversion finale: Australia
  • Mis à jour 12 mars 2026
  • 1 minute de lecture

    • View the CSV Feeds that are configured in the base system.

    Avant de commencer

    Role required: sn_sec_tisc.admin

    Procédure

    1. Navigate to Workspaces > Threat Intelligence Security Center.
    2. Click on Integrations icon.
    3. Select CSV.
      The CSV feeds within the base system are explained in the following table.
      ThreatFeed Description URL
      PhishStats Phishing URLs from the past 30 days from PhishStats. https://phishstats.info/phish_score.csv
      Abuse.ch SSL Certificate Blacklist The SSL Certificate Blacklist (CSV) is a CSV that contains SHA1 Fingerprint of all SSL certificates blacklisted on SSLBL. https://sslbl.abuse.ch/blacklist/sslblacklist.csv
      Botnet C2 IP Blacklist An SSL certificate can be associated with one or more servers (IP address:port combination). SSLBL collects IP addresses that are running with an SSL certificate blacklisted on SSLBL. These are usually botnet Command&Control servers (C&C). SSLBL hence publishes a blacklist containing these IPs which can be used to detect botnet C2 traffic from infected machines towards the internet, leaving your network. https://sslbl.abuse.ch/blacklist/sslipblacklist.csv
      Phishtank online NA https://data.phishtank.com/data/online-valid.csv
    4. Click Edit to edit the feed.