Trellix

Trellix IOC (Indicators of Compromise) API

REST API interface for managing indicators of compromise within the Trellix security platform. Enables uploading, querying, and managing IOCs including file hashes, IP addresses, domains, and email addresses for threat detection and investigation.

GitHub

Documentation

📖
Documentation
https://docs.trellix.com/bundle/iocs_1-2-144_ug/page/UUID-d981cbd0-d535-dd8f-7cf8-a287bf077392.html
📖
APIReference
https://docs.trellix.com/bundle/iocs_1-2-144_ug/page/UUID-11acd4c1-f095-333a-c394-5bfbf0a69823.html

API entry from apis.yml

apis.yml Raw ↑ 
name: Trellix IOC (Indicators of Compromise) API
description: REST API interface for managing indicators of compromise within the Trellix security platform.
  Enables uploading, querying, and managing IOCs including file hashes, IP addresses, domains, and email
  addresses for threat detection and investigation.
image: https://www.trellix.com/favicon.ico
humanURL: https://docs.trellix.com/bundle/iocs_1-2-144_ug/page/UUID-d981cbd0-d535-dd8f-7cf8-a287bf077392.html
baseURL: https://{hx-appliance}/hx/api/v3
tags:
- Indicators of Compromise
- Security Operations
- Threat Detection
- Threat Intelligence
properties:
- type: Documentation
  url: https://docs.trellix.com/bundle/iocs_1-2-144_ug/page/UUID-d981cbd0-d535-dd8f-7cf8-a287bf077392.html
- type: APIReference
  url: https://docs.trellix.com/bundle/iocs_1-2-144_ug/page/UUID-11acd4c1-f095-333a-c394-5bfbf0a69823.html