Cofense Intelligence
  • 26 Mar 2025
  • 1 Minute to read
  • Dark
    Light

Cofense Intelligence

  • Dark
    Light

Article summary

Cofense Intelligence streamlines the identification and management of phishing threats by providing actionable insights and real-time alerts across your email security landscape. For detailed information, please refer to the Cofense website.

Integration Method: API

Tables: Detection Finding (2004)

The integration supports the following events.

Event

Description

Threats

The API enables users to search for specific threats, returning confirmed Cofense Intelligence or Cofense Credential Phish threats, while also retrieving a list of all vulnerabilities.

This integration supports the following versions.

Cofense Intelligence Version Supported

1.0.7

Cofense Intelligence API version

v1

Prerequisites

  1. The user should have access to the Cofense Intelligence portal with an account that has Global Administrator privileges. 

  2. The user should have access to the DataBee console.

Configuration Overview

  1. Create an API Token from Cofense Intelligence platform to access the APIs.

  2. Create Cofense Intelligence data feed in the DataBee console with the required Client credentials.

    DataBee Parameter

    Cofense Intelligence Parameter

    Username

    Username

    Password

    Password

Cofense Intelligence Configuration

Create an API Token

  1. Log on to Cofense Intelligence portal with an account that has the Administrator privileges.

  2. Navigate to the API Tokens tab and click on Create New Token.


  3. The “Create New API Token” dialog box will open. Enter the ‘Token Name’ and click Create.


  4. Once the API token is created, a dialog box will open displaying the User Name and Password. Copy these credentials.


    Note:

    Please ensure that you copy the username and password as this will be visible only once.

Databee Configuration

  1. Login to the DataBee UI, navigate to Data > Data Feeds and click the Add New Data Feed button.
     

  2. Search for the Cofense Intelligence and click it as shown below.
     

  3. Click on the API Ingest option for collection method.
     

  4. Enter feed contact information and click Next.
     

  5. In the configuration page, confirm the following:

    • Authorization Method: Basic

    • Username: paste Username generated earlier in the Cofense Intelligence portal.

    • Password: paste  Password generated earlier in the Cofense Intelligence portal

    • Event Types: preselected for all the event types that integration pulls.

  6. Click Submit.

Troubleshooting Tips

  • If you encounter an Invalid client or Unauthorized client error, it may be due to incorrect credentials. Please double-check that the username and password are entered correctly. To avoid any issues, consider pasting it into a text editor to ensure there are no extra spaces or unexpected characters before reconfiguring the DataBee feed.


Was this article helpful?

What's Next
Changing your password will log you out immediately. Use the new password to log back in.
First name must have atleast 2 characters. Numbers and special characters are not allowed.
Last name must have atleast 1 characters. Numbers and special characters are not allowed.
Enter a valid email
Enter a valid password
Your profile has been successfully updated.
ESC

Eddy AI, facilitating knowledge discovery through conversational intelligence