8 Integrations and Alerts are available in Settings:

  1. OnINBOX Manager

    Any threat lookalikes found by OnDOMAIN will be forwarded to OnINBOX. You can then easily configure rules in OnINBOX on how any mail from this domain, should it start sending any, should be handled.

  2. OnDMARC

    Any domains you have added to OnDMARC will be added to the list of owned domains in OnDOMAIN. In turn, if OnDOMAIN uncovers legitimate domains that you have forgotten about, these will be sent to OnDMARC and can be properly secured and managed there.

  3. Insight

    Lookalike domains detected by Insight will be added to the list of lookalikes in the Activity section.

  4. Emails Alerts

    Enter one or more email addresses to receive email notifications on threat analysis for lookalike domains.

  5. Logo detection tags

    Enter the tags you want OnDOMAIN to highlight, when present, in the domain screenshots.

  6. Cortex XSOAR (Demisto) Alerts

    If you have a Cortex XSOAR instance, you can connect it to OnDOMAIN to receive notifications. You will need to set up a webhook URL and an API key for OnDOMAIN to connect to your Cortex SOAR instance.

  7. Splunk Alerts

    If you have a Splunk instance, you can also integrate it with OnDOMAIN to receive notifications. You will need to set up a webhook URL on your Splunk instance and add it to the corresponding integration text field.

  8. Slack Alerts

    In order to receive notifications in your Slack instance, you will need to create a webhook and add it to the corresponding text field in the settings section.

See the screenshots below to see what the Settings page looks like.

Did this answer your question?