Edit

Share via

Cybersixgill

  • Article

Important

Some information in this article relates to a prereleased product which may be substantially modified before it's commercially released. Microsoft makes no warranties, express or implied, with respect to the information provided here.

Cybersixgill offers real-time threat intelligence solutions to help security teams detect and respond to imminent threats from the clear, deep, and dark web.

Note

This article contains information about third-party plugins. This is provided to help complete integration scenarios. However, Microsoft does not provide troubleshooting support for third-party plugins. Contact the third-party vendor for support.

Prerequisites

  • The plugin requires the use of an API key that can be obtained from Cybersixgill developer portal.
  • Once logged into the developer portal, obtain and safely copy your API client ID and secret.

Know before you begin

You'll need to take the following steps to use the plugin.

  1. Sign in to Microsoft Copilot for Security.

  2. Access Manage Plugins by selecting the Plugin button from the prompt bar.

  3. Select Settings to configure your Cybersixgill plugin.

  4. Select Save and begin prompting in Copilot for Security.

Sample Cybersixgill prompts

After the Cybersixgill plugin is configured, you can try one or more of the capabilities listed in the following table:

Capability Example prompts
Check about recent breach/ransomware events According to Cybersixgill, tell me about the last 5 breach events from forum_breach related to the UK. Summarize it in a table and provide victim name with sector.

Tell me about ransomware attacks in the last 90 days targeting the healthcare sector using Cybersixgill database.
Get details about specific CVE According to Cybersixgill, tell me about CVE-2023-34362.
Check if my organizational credentials were compromised in the dark web According to Cybersixgill, tell me if credentials of my organization were compromised in the dark web in the last month.

According to Cybersixgill, tell me if the following xxx@xxx.com credentials were exposed in the dark web in the last month.
Get comprehensive profiles of APTs, Actors, and related Malware and IOCs. According to Cybersixgill, tell me about related malware and IOCs for APT39.
Look up on specific IOCs or IPs Tell me about the following IP [IP] using Cybersixgill database.

Troubleshoot the Cybersixgill plugin

Errors occur

If you get errors, such as Couldn't complete your request, or An unknown error occurred, make sure the plugin is turned on. If the issue persists, sign out of Copilot for Security, and then sign back in.

Prompts aren't invoking the correct capabilities

If prompts aren't invoking the correct capabilities, or prompts are invoking some other capability set, you might have custom plugins or other plugins that have similar functionality as the capability set you want to use. For example, if you're using multiple sources that provide information like Cybersixgill, there might be conflicts. To prioritize and target Cybersixgill, try disabling other custom plugins. Or, you can either use the product name Cybersixgill in your prompts.

Provide feedback

To provide feedback, contact Cybersixgill.

See also

Other plugins for Microsoft Copilot for Security

Manage plugins in Microsoft Copilot for Security