Skip to main content

Proofpoint TAP

proofpoint-tap

Version: 1.2
Updated: Mar 31, 2023

Proofpoint Targeted Attack Protection (TAP) integration which protects against and provides additional visibility into phishing and other malicious attacks.

Actions​

  • List Campaigns (Enrichment) - Gets details for a given campaign.
  • Get Campaign (Enrichment) - Gets a list of IDs of campaigns active in a specified time period.
  • Get Most Attacked Users (Enrichment) - Gets a list of the most attacked users in the organization.
  • Get Top Clickers (Enrichment) - Gets a list of the top clickers in the organization for a specified time period.
  • Get Threat (Enrichment) - A string containing a unique identifier associated with the threat in TAP Dashboard.
  • List Issues (Enrichment) - Get events for clicks to malicious URLs permitted and messages delivered containing a known attachment threat within the specified time period.
  • Blocked Messages (Enrichment) - Fetch events for messages blocked in the specified time period which contained a known threat.
  • Blocked Clicks (Enrichment) - Fetch events for clicks to malicious URLs blocked in the specified time period.
  • Decode URL (Containment) - The URL Decoder allows users to decode URLs which have been rewritten by TAP to their original, target URL.

Configure Proofpoint TAP in Automation Service and Cloud SOAR​

Before you can use the integration, you must configure it so that the vendor can communicate with Sumo Logic. For general guidance, see Configure Authentication for Integrations.

  1. Access integrations in the Automation Service or Cloud SOAR.
  2. After the list of the integrations appears, search/look for the integration and click on the row.
  3. The integration details will appear. Click on the "+" button to add new Resource.
    proofpoint-tap
  4. Populate all the required fields (*):
    • Label. Name of the resource
    • URL. URL of Proofpoint TAP (default URL’ https://tap-api-v2.proofpoint.com’ is already provided).
    • Service Principal
    • Secret Key
      proofpoint-tap
  5. Click SAVE.
    proofpoint-tap
  6. To make sure the resource is working, hover over the resource and then click the pencil icon that appears on the right.
    proofpoint-tap
  7. Click TEST SAVED SETTINGS.
    proofpoint-tap
  8. You should receive a successful notification in the bottom right corner.
    proofpoint-tap

Change Log​

  • February 4, 2022 - First upload
  • March 31, 2023 (v1.1 and v1.2) - Integration refined.
Edit this page
Last updated on by John Pipkin (Sumo Logic)
Status
Legal
Privacy Statement
Terms of Use

Copyright © 2025 by Sumo Logic, Inc.