Cisco Vulnerability Management - Get File Hashes by CVE
This atomic belongs to the Cisco Vulnerability Management atomic group.
Gets a list of known malware hashes (MD5, SHA1 and SHA256) for a single vulnerability by CVE ID from Cisco Vulnerability Management (formerly Kenna).
Note: This atomic has been updated to have additional and/or more user friendly output variables. The atomic's original output variable will now have "(Old)" in its name.
Note: This API is a premium feature and requires a Kenna.VI+ subscription.
Target: Cisco Vulnerability Management integration target or an HTTP Endpoint for "api.<region>.kennasecurity.com"
Account Key: None if using an integration-provided target, API token if using an HTTP endpoint target
Steps:
[] Build the authorization header
[] Get file hashes for the CVE
[] Check if the request was successful:
[]> If it was, extract the results and set the output variables
[]> If it wasn't, return an error
More information about this API: https://apidocs.kennasecurity.com/reference/show-malware-hashes