73 docs tagged with "spectra-analyze"

Spectra Analyze Advanced Search delivers metadata search with 100+ keywords, Boolean operators, and cross-cloud discovery for malware identification.

Search for samples available on the local Spectra Analyze instance and Spectra Intelligence using the Advanced Search capabilities.

Spectra Analyze Alerts provide real-time notifications for malware classification changes and analysis results with customizable subscriptions and delivery methods.

Spectra Analyze Analysis services integrate dynamic and static analysis with ReversingLabs Cloud Sandbox, Cuckoo, Joe Sandbox, and third-party sandboxes.

Spectra Analyze API Documentation enables REST API integration with automated workflows using authentication tokens for seamless appliance interaction.

Technical reference for Spectra Analyze appliance configuration options.

Automated backup and purge operations for managing storage space and data retention.

Manage Root CA certificates for Spectra Analyze and Spectra Detect appliances.

Spectra Analyze Classification Status API retrieves threat classification, risk scores, and detection status for analyzed samples.

System configuration settings and options for the Spectra Analyze appliance.

Spectra Analyze connectors configuration for external system integration with SIEM and orchestration platforms.

Get a list of all top-level containers from which the requested sample has been extracted during analysis.

Spectra Analyze Dashboard displays file submission statistics, malware trends, YARA matches, and threat intelligence analytics across configured time ranges.

Spectra Analyze Delete API enables removal of malware samples and associated analysis data from the appliance with bulk operation support.

Spectra Analyze deprecated API endpoints with migration guidance for updated versions and alternative implementations.

The Discussion page displays the comments that have been added to a sample, either by the user who uploaded it or by other users.

Download samples from the appliance to local storage.

Create and download PDF or HTML reports for samples that have gone through dynamic analysis.

The Sample Details page shows any dynamic analysis service reports, if dynamic analysis services are configured on the appliance.

A page that allows browsing through the entire hierarchy of files extracted from a sample.

List and download files extracted from a local sample.

Perform factory reset operations and Solr index reset for troubleshooting.

Spectra Analyze File and URL Submissions enable manual and automated analysis with sandbox integration, extraction, and multi-service threat detection.

The file preview window can be used to preview image samples, text documents and some script languages. It also provides Entropy and Structure tabs, and a HEX preview.

Spectra Analyze Flexible Intel Feed configuration for STIX/TAXII threat intelligence integration with Spectra Intelligence.

Retrieve a detailed analysis report for local samples.

Get started with Spectra Analyze: configure the Spectra Intelligence cloud connection, access the web interface, upload your first file for analysis, and interpret the results.

Spectra Analyze Graph visualizes relationships between malware samples, files, domains, and IPs for interactive threat connection exploration and analysis.

Authentication tokens are mandatory for all interactions with the Spectra Analyze appliance APIs.

Spectra Analyze service integrations configuration for dynamic analysis sandboxes, threat feeds, and analysis enhancement.

Spectra Analyze Layouts Editor for customizing sample summary displays with data blocks, sharing, and personalization options.

Manage appliance licensing and license configuration.

Spectra Analyze Licensing API for generating machine IDs, uploading licenses, and monitoring license status for appliance management.

Spectra Analyze Network Threat Intelligence API provides reputation data and threat analysis for URLs, domains, and IP addresses.

Spectra Analyze Network Threat Intelligence reveals URL, IP, and domain reputation with threat analysis, DOM inspection, and historical threat intelligence data.

Spectra Analyze open source software licenses and third-party package attributions for compliance and transparency.

Download a PDF report of the analysis results for any sample on the appliance.

Spectra Analyze Processing Status API monitors analysis progress for submitted files and URLs with real-time status updates.

Spectra Analyze quota usage alerts configuration for email notifications on Spectra Intelligence usage and threshold monitoring.

Reanalyze one or more samples with selected services (V1).

Reanalyze one or more samples with selected services (V2).

Configure and manage redundancy system settings for high availability.

Check if the Spectra Analyze instance is a primary in the redundant cluster.

Retrieve a summary of the analysis report for local samples.

Spectra Analyze Risk Tolerance feature extends sample classification with additional analysis services for customized threat assessment.

The Sample Details page presents all the available information about a sample.

The Report Summary page highlights the most interesting information about an analyzed sample.

Spectra Analyze Search & Submissions provides local and cloud file queries, bulk operations, filtered results, and network resource analysis tools.

Spectra Analyze self-service registration setup with identity providers like Okta using SAML and OIDC integration.

Override the classification of a sample, either locally or in the Spectra Intelligence cloud.

Spectra Analyze initial setup and configuration guide covering system requirements, deployment, licensing, and first-time appliance configuration.

The Sources page displays different types of sources for the selected sample, their time and date of retrieval, as well as any additional information.

Spectra Analyze is a malware analysis solution for threat analysts and small teams. It combines static file decomposition, cloud threat intelligence from Spectra Intelligence, and collaborative workflows to accelerate threat detection and investigation.

Spectra Analyze Spectra Core results display static analysis reports with file information, behavior indicators, and risk assessment organized by section.

Retrieve the Spectra Core (static) analysis results for a local sample.

Spectra Analyze Submissions API enables programmatic submission of files and URLs for static analysis and malware detection.

Spectra Analyze System Status monitoring for appliance health, service status, resource utilization, and system log retrieval.

Manage system updates and software upgrades for the appliance.

Spectra Analyze Tags enable system and user-defined sample categorization with search filtering and bulk tagging for efficient malware organization.

Create, delete or retrieve user tags for any sample on the appliance.

Threats can be classified by Spectra Core, Spectra Intelligence, dynamic analysis, or manually overridden. This page also contains a list of all possible classification reasons for a sample.

Spectra Analyze Threat Intelligence displays Spectra Intelligence cloud data including AV detections, threat history, and malware reputation over time.

Spectra Analyze Timezone API for setting and querying system timezones to control appliance date and time display preferences.

Spectra Analyze authentication token management for API access control and per-user key configuration and administration.

Troubleshoot common Spectra Analyze issues: file upload failures, classification problems, login errors, license warnings, and API errors.

Spectra Analyze role-based access control for creating, editing, and managing custom user roles and permission assignments.

Spectra Analyze user management for creating accounts, configuring access, and managing user directory and authentication settings.

Retrieve YARA ruleset lists or their contents, create new rulesets, delete or update existing rulesets.

Spectra Analyze YARA Hunting enables custom ruleset creation, cloud synchronization, and malware detection with continuous and retroactive scanning.

Spectra Analyze YARA repositories management for rule synchronization, online sources, and custom GitHub configuration.

Managing YARA repositories and rulesets, including repository creation, update, deletion, job scheduling, and ruleset publishing.

Allows users to initiate or stop a local retro scan, manage cloud retro scans and check the YARA retro status on the appliance.

Spectra Analyze YARA Retroactive Hunting scans historical samples and cloud data for rule matches, uncovering previously hidden malware detections.