Bowei Chi

  • Total activity 15
  • Last activity
  • Member since
  • Following 0 users
  • Followed by 0 users
  • Votes 1
  • Subscriptions 6


Recent activity by Bowei Chi Sort by recent activity Recent activity Votes
  • Where's connection setting for web hook?

    Hi there, I have a web hook set up on my portal for sending scheduled search results.  It appears that the UI has changed a bit since I last used it.  There's no longer a "settings" tab under "Mana...

  • lookup operator with compareCIDRPrefix

    Can I use lookup operator in combination with compareCIDRPrefix to check if ip in the log is in a list of cidrs from csv?   Something like this, but iIt complain about "unexpected token" if I query...

  • lookup operator with dynamic url?

    Is it possible to use a dynamically generated url in "lookup" operator? For example, I'd like to pass dest_ip to the url in lookup: | fields dest_ip, url| lookup cidr from https://xxxxxx.ngrok.io/{...

  • threat intel data integration besides crowdstrike?

    Are there any resource / documentation on building a threat intel app much like the crowdstrike app but using a different source to correlate the intel data?  The alternative source can be a REST e...