topic ThreatGRID analysis notification in Endpoint Security https://community.cisco.com/t5/endpoint-security/threatgrid-analysis-notification/m-p/3441964#M3322 <HTML><HEAD></HEAD><BODY><P>Hi All,</P><P></P><P>I have a question about ThreatGRID appliance integrated with Cisco ESA for local sandbox analysis.</P><P>Is it possible to receive notification from ThreatGRID appliance in case of an analized file is classified as Malware?</P><P></P><P>I.E could be a good option a Syslog Message, an SNMP trap or an HTTP Post through API.</P><P></P><P>I've seen that in ESA these information are stored in the amp and mail_log log files but mixed with information about good reputation files.</P><P></P><P>Thanks</P><P>Best regards</P><P>Gabriele</P></BODY></HTML> Fri, 21 Feb 2020 05:05:08 GMT gabrieleferrari 2020-02-21T05:05:08Z ThreatGRID analysis notification https://community.cisco.com/t5/endpoint-security/threatgrid-analysis-notification/m-p/3441964#M3322 <HTML><HEAD></HEAD><BODY><P>Hi All,</P><P></P><P>I have a question about ThreatGRID appliance integrated with Cisco ESA for local sandbox analysis.</P><P>Is it possible to receive notification from ThreatGRID appliance in case of an analized file is classified as Malware?</P><P></P><P>I.E could be a good option a Syslog Message, an SNMP trap or an HTTP Post through API.</P><P></P><P>I've seen that in ESA these information are stored in the amp and mail_log log files but mixed with information about good reputation files.</P><P></P><P>Thanks</P><P>Best regards</P><P>Gabriele</P></BODY></HTML> Fri, 21 Feb 2020 05:05:08 GMT https://community.cisco.com/t5/endpoint-security/threatgrid-analysis-notification/m-p/3441964#M3322 gabrieleferrari 2020-02-21T05:05:08Z Re: ThreatGRID analysis notification https://community.cisco.com/t5/endpoint-security/threatgrid-analysis-notification/m-p/3441965#M3325 <HTML><HEAD></HEAD><BODY><P>Hello,</P><P></P><P>There is syslog option in Threatgrid. There is also TG API you can use.</P><P>All API documentation can be found here at <A href="https://panacea.threatgrid.com/doc/main/api.html" title="https://panacea.threatgrid.com/doc/main/api.html">https://panacea.threatgrid.com/doc/main/api.html</A></P><P></P><P>Thanks,</P><P>Yogesh</P></BODY></HTML> Wed, 20 Dec 2017 18:42:26 GMT https://community.cisco.com/t5/endpoint-security/threatgrid-analysis-notification/m-p/3441965#M3325 yogdhanu 2017-12-20T18:42:26Z