Skip to content

Sift Tool Settings

Tool Settings allow an Organization Administrator to manage certain Sift configuration settings for all users of an Organization. The Tool Settings cannot be configured by other user roles. The configured Sift Tool Settings are stored in the Platform and Sift retrieves the Tool Settings when it initiates a run.

Editing Sift Tool Settings

  • In the Admin Portal, navigate to the Settings for an Organization by clicking on the gear icon.
  • On the "Tool Settings" tab, select "Sift" in the Tool Name selector.
  • Edit the settings and click the Save button.

Parameters in Sift Tool Settings

Interactsh Server

The "Interactsh Server" parameter specifies the hostname (e.g. domain.com) of an Interactsh server that will be used by the Server-Side Request Forgery (SSRF) analyzer.

The SSRF analyzer generates requests to the target application that contain attack URLs constructed with the Interactsh server domain. If the target application accesses the attack URLs, the Interactsh server responds. Since the response content from the Interactsh server can affect the security of the target application, it is essential to use a trusted and secure Interactsh server. To ensure this, only the Organization Administrator has the authority to configure the Interactsh server for all users within the organization.