Monte Copilot supported tools
Monte Copilot comes equipped with specific tools to help answer questions you are asking in real-time.
Last updated
Monte Copilot comes equipped with specific tools to help answer questions you are asking in real-time.
Last updated
Monte Copilot comes equipped with specific tools to help answer questions you are asking in real-time. Tools are used to collect information across different security resources so that each answer is as accurate as possible.
Anvilogic will constantly add more tools and capabilities over time. Refer to the table below to see what's upcoming.
If you have tools in mind that we do not cover, add your feedback in .
Ask Monte Copilot questions about IP addresses, URLs, domains, processes and commands with and without arguments, encoded and plain text processes and commands, and file hashes.
For example, you can ask whether or not a specific IP address is suspicious, ask for an explanation of a particular PowerShell command, or ask Monte Copilot to write a specific command for you.
Monte Copilot is fully integrated with the following tools to answer your questions:
| Tool | Description |
|---|
| Provides information about IP addresses, including geolocation, autonomous system information, and more. |
| Provides insights regarding binaries, scripts, and libraries that are part of the Windows OS. |
| Offers insights into listening services and ports associated with a given IP address. |
| Retrieves and parses WHOIS data about a URL. |
| Analyzes URLs, domains, IP addresses, and files for threats like viruses, worms, trojans. |
| Provides information regarding Windows OS commands. |
| Offers details on a specific question, topic, or keyword. Utilizes
You can questions about Threat Actors, Vulnerabilities, Exploits, TTPs and more. |
| Explains the details of full operating system command calls and analyzes malicious activity. |
| Used to decode Base64-encoded strings. |
| Checks the reputation and popularity of a domain based on the Cisco Umbrella Popularity List |
| Checks if a URL or IP address is listed as an Indicator of Compromise (IoC) against multiple sources including
|
| Generates regex patterns for allowlisting benign processes to reduce alert volume. |