It would be ideal to be able to quickly identify the "owner" of an IP address. In a typical SP network this could take several forms:
- RADIUS data
- IPAM details (from a system like NetBox)
- Routing Table (for instance, a downstream customer)
- WHOIS data
Given the flexibility of this, it would be great to have an ability to call an external URL to have a JSON value returned that can be included in messages to identify the "Target" of the attack. This could also contain information such as notification parameters for further reporting.
It would be ideal to be able to quickly identify the "owner" of an IP address. In a typical SP network this could take several forms:
Given the flexibility of this, it would be great to have an ability to call an external URL to have a JSON value returned that can be included in messages to identify the "Target" of the attack. This could also contain information such as notification parameters for further reporting.