Installation
The add-on is available for Chrome and Firefox.| Browser | Store |
|---|---|
| Chrome | Chrome Web Store |
| Firefox | Firefox Add-Ons |
To learn how to use the add-on effectively, visit Usage.
Features
The add-on supports a wide range of threat research workflows. Use it to enrich individual indicators, look up threats by name, or process thousands of indicators or threats at once.Indicator Highlighting
Highlight text on any webpage to parse and refang a domain, IP address, or URL and enrich it with Pulsedive threat intelligence. From the add-on sidebar, run scans and pivot directly to Pulsedive for further investigation.Bulk Parsing
Highlight text containing hundreds or thousands of observable entities to parse and refang them all at once. Download the results as a CSV file, or pass them to Pulsedive Analyze for bulk enrichment.Threat Enrichment
The add-on can retrieve threat information for any threat name or alias found in webpage text, including associated indicators, TTPs, latest news, and more.Auto-Popup
The auto-popup is a sidebar that appears automatically when you highlight text containing supported observable entities. Triggering behavior depends on what you highlight:- Single indicator: The indicator must make up most of the highlighted text, which limits unintentional triggering.
- Multiple indicators: The sidebar appears automatically if Bulk Parsing is enabled for the auto-popup.
Add-On Button
The add-on button in the browser toolbar provides direct access to enrichment, independent of most auto-popup settings:- Text highlighted: The add-on enriches the highlighted text regardless of auto-popup restrictions.
- No text highlighted: The add-on displays information for the domain of the active browser tab.
Threat enrichment is only available via the add-on button, not the auto-popup.