All Collections
Tines How To
How To Article
Authentication Guides
Malwarebytes Authentication Guide
Malwarebytes Authentication Guide

How to authenticate Malwarebytes for use with Tines

S
Written by Shelby Lamb
Updated over a week ago

Malwarebytes is an anti-malware software for Microsoft Windows, macOS, ChromeOS, Android, and iOS that finds and removes malware. Made by Malwarebytes Corporation, it was first released in January 2006.

First, create OAuth2 credentials for Nebula

To integrate Nebula with other applications, you will need to create an OAuth client ID and Client secret. You must be a Super Admin to create OAuth2 credentials in Nebula (see Malwarebytes documentation).

  1. Log in to Nebula.

  2. In the left navigation pane, click "Integrate".

  3. Click the "Add".

  4. In the "Create Client" pop-up window, enter an Application name.

  5. Check "read, write, and/or execute".

  6. Click "Save".

  7. In the OAuth Client window, copy your "client ID" and "client secret".

IMPORTANT: This is the only time your client secret is displayed. Store it in a secure place. If you lose the secret, you need to generate a new secret, and you will be required to update all integrations that used the old secret.

Lastly, create a Malwarebytes Credential in Tines

  1. Login to your Tines tenant

  2. Navigate to the team that will be using the API and click "Credentials"

  3. Click "+ New Credential" and select "HTTP Request"

  4. Input the values for the Malwarebytes credential

    1. Name: Malwarebytes

    2. Description: Optional

    3. URL: https://api.malwarebytes.com/oauth2/token

    4. Content Type: Form

    5. Method: post

    6. Payload: Copy the below object and paste into the "Plain code" section

      { 
      "scope": "read write", 
      "grant_type": "client_credentials" 
      }

    7. Headers:

      1. Header: Authorization

      2. Value: Basic <<BASE64_ENCODE("yourmwb-cloud-number:yoursecret")>>

  5. Click "Save"

  6. Click "Run request" and and double-click on the access_token key to copy the path

  7. Location of token from response: Paste the path you copied <<malwarebytes.body.access_token>>

  8. Optional

    1. Domains: Ensure this credential can only be used when making HTTP requests to specific domains

    2. Access: What other teams can also use the API

  9. Click "Save"

Your credential should look like the following:


For more on creating credentials in Tines, click here.

You can find a selection of Malwarebytes stories in the story library.

Using the Credential and Resources in an action

The Header configuration for your Malwarebytes credential should be:

"Authorization": "Bearer <<CREDENTIAL.malwarebytes​>>"

Here is an example Malwarebytes action you can copy and paste onto your storyboard in Tines:

{"standardLibVersion":"41","actionRuntimeVersion":"6","agents":[{"disabled":false,"name":"Working List suspicious activities of the account in MalwareBytes","description":"Fetch suspicious activity records of the account","options":"{\"url\":\"https://api.malwarebytes.com/nebula/v1/events\",\"content_type\":\"application_json\",\"method\":\"get\",\"headers\":{\"Authorization\":\"Bearer <<CREDENTIAL.malwarebytes>>\",\"accountid\":\"<<RESOURCE.Malwarebytesid>>\"}}","position":{"x":945,"y":300},"type":"httpRequest","timeSavedUnit":"seconds","timeSavedValue":0,"monitorAllEvents":false,"monitorFailures":false,"monitorNoEventsEmitted":null,"recordType":null,"recordWriters":[],"form":null,"cardIconName":"httpRequest","createdFromTemplateGuid":"31fd8f347d598606b2c44fec5e0c9bf2a30c670030079f25aa68473848431792","createdFromTemplateVersion":1,"originStoryIdentifier":"cloud:8b3d0c1d536d7aef6416b3d0e57a460a:4a72bb77fd9e057d66d88208bf9b39ea"}],"links":[],"diagramNotes":[]}
Related Articles
Azure Authentication Guide
Cylance Authentication Guide
Cribl Authentication Guide
Did this answer your question?