Overview
This node performs the 'Defang' operation, which makes URLs and IP addresses safe for sharing by replacing dangerous characters. It is useful in scenarios where you need to share potentially harmful indicators of compromise (IoCs) like URLs or IPs without risking accidental clicks or automatic processing by security tools. For example, it can be used to sanitize URLs in threat intelligence reports or emails.
Use Case Examples
- Defang a URL before sharing it in a security report to prevent accidental clicks.
- Sanitize IP addresses in logs before sending them to external parties.
Properties
| Name | Meaning |
|---|---|
| Value | The string value (URL or IP address) that should be defanged to make it safe for sharing. |
| Property Name | The name of the property in the output JSON where the defanged value will be written. Supports dot-notation for nested properties. |
Output
JSON
- The defanged string value is written to the specified property name in the output JSON, preserving the rest of the input data.
Dependencies
- Uses the 'fanger' library for defanging and refanging URLs and IP addresses.
- Uses 'lodash' for setting nested properties in the output JSON.
Troubleshooting
- If the input value is not a valid string or contains unexpected characters, the defang operation might fail and throw an error.
- If the specified property name uses incorrect dot-notation syntax, the output might not be set correctly.
- Errors during defanging will throw a NodeOperationError unless 'Continue On Fail' is enabled, in which case the error is captured in the output.
Links
- Fanger GitHub Repository - The library used for defanging and refanging URLs and IP addresses.