EvidenceHub setup

We're excited to help you enhance your threat hunting and analysis experience. 

This guide will walk you through the initial setup process and basic usage of our service.

Initial Setup

Before you begin using EvidenceHub, there are a few important steps to complete:

  1. Obtain API Keys
    • API keys are required for most services integrated with EvidenceHub.
    • If you're unsure how to obtain an API key for a specific service:
      • Navigate to Knowledge Base > Obtaining an API Key > Select desired provider
  2. Configure API Settings
    • Once you have your API key(s), go to Settings > API Settings
    • Select the required category (e.g., IP, Hash, URL)
    • Choose your desired provider
    • Enter the API key and click "Submit"
    • Note: Some providers may not require an API key. To check, go to Knowledge Base > Obtaining an API Key > Select desired provider
  3. Customize Service Field Settings
    • Navigate to [Service Fields Settings]
    • Select the desired category and provider
    • Enable the specific fields you want to use in your searches

Using EvidenceHub

Now that you've completed the setup, you're ready to start hunting:

  1. Click on the "Search" option
  2. Set the category (e.g., URL, IP, Hash)
  3. Enter your query term
  4. Enable or disable providers as needed
  5. Click "Search"

Working with Results

After performing a search, you have several options for managing the results:

  • Copy all data for use in other applications
  • Copy results from specific providers
  • Copy individual fields one by one

Conclusion

We hope this guide helps you get started with EvidenceHub.

Remember, effective threat hunting is an ongoing process of learning and adaptation. 

*While EvidenceHub significantly streamlines your threat hunting process, it's not intended to fully replace specific services or providers. Its primary goal is to reduce handling time and provide quick insights. For complex cases, deeper analysis using specialized tools may be necessary. Always conduct thorough research before making final decisions.

We're confident EvidenceHub will elevate your threat hunting capabilities.
Remember, stay vigilant and happy hunting!

Need further assistance? Don't hesitate to reach out to our support team.