AbuseIPDB
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊
| Attribute | Value |
|---|---|
| Publisher | Microsoft Corporation |
| Support Tier | Microsoft |
| Support Link | https://support.microsoft.com/ |
| Categories | domains |
| Version | 3.0.2 |
| Author | Microsoft - support@microsoft.com |
| First Published | 2022-05-23 |
| Solution Folder | AbuseIPDB |
| Marketplace | Azure Marketplace · Rating: ★☆☆☆☆ 1.0/5 (3 ratings) · Popularity: 🟡 Low (12%) |
The AbuseIPDB solution for Microsoft Sentinel allows you to check the reputation of IP addresses in log data and perform automated actions like enriching a Microsoft Sentinel incident by IP reputation information, add blacklisted IP addresses to ThreatIntelligenceIndicator table and reporting IPs to Abuse IPDB based on a user response in Teams.
Data Connectors
This solution does not include data connectors.
This solution may contain other components such as analytics rules, workbooks, hunting queries, or playbooks.
Content Items
This solution includes 3 content item(s):
| Content Type | Count |
|---|---|
| Playbooks | 3 |
Playbooks
| Name | Description | Tables Used |
|---|---|---|
| AbuseIPDB Blacklist Ip To Threat Intelligence | By every day reccurence, this playbook gets triggered and performs the following actions: 1. Gets [l... | - |
| AbuseIPDB Enrich Incident By IP Info | Once a new sentinal incident is created, this playbook gets triggered and performs the following act... | - |
| AbuseIPDB Report IPs To AbuseIPDB After User Response In MSTeams | When a new sentinel incident is created, this playbook gets triggered and performs the following act... | - |
Release Notes
| Version | Date Modified (DD-MM-YYYY) | Change History |
|---|---|---|
| 3.0.2 | 09-12-2025 | Fix typos and update img Source in AbuseIPDB Playbook Solutions |
| 3.0.1 | 29-03-2024 | Updated playbook description and corrected sentense formatting |
| 3.0.0 | 31-07-2023 | Updated prerequisites for AbuseIPDB-BlacklistIpToThreatIntelligence playbook |
| Modified text as there is rebranding from Azure Active Directory to Microsoft Entra ID. |
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊