Threat Lookup - Have I been pwned? workflow

The Threat Lookup - Have I been pwned? workflow performs a lookup on selected observables. If the observables are of a type recognized by Have I been pwned?, the observables are scanned for malware, and the results are returned.

About this task

This workflow is triggered by the Security Operations Integration - Threat Lookup capability when you perform a threat lookup on one or more observables, and the Have I been pwned? implementation is selected. For more information, see Perform lookups on observables.

Threat Lookup - Have I been pwned? workflow

Workflow process activities include: