From dae89b0efc69a2f264ad1e8989639b32b3ce6597 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?L=C3=A9arch?= <learch@firost.fr>
Date: Mon, 15 Jul 2019 16:25:42 +0200
Subject: [PATCH] Update doc (TheHive-Project/Cortex-Analyzers#514)

---
 analyzer_requirements.md | 9 ++++++++-
 1 file changed, 8 insertions(+), 1 deletion(-)

diff --git a/analyzer_requirements.md b/analyzer_requirements.md
index 697a52a..6db87df 100644
--- a/analyzer_requirements.md
+++ b/analyzer_requirements.md
@@ -186,6 +186,13 @@ for more information on setting it up.
 To configure the analyzer you need to supply the **API URL** of your local instance
 as a value of the `url` parameter.
 
+In addition, since Cuckoo 2.0.7, you need to specify an **API token** used for authentication.
+This token can be found in your configuration, in the Cuckoo Working Directory (`$CWD/conf/cuckoo.conf`).
+
+Finally, if you secured your API calls thanks to HTTPS, using a custom CA, you can specify it in
+the `cert_path` parameter (`/etc/ssl/certs/my-custom-ca.pem`). Alternatively, you can disable TLS
+certificate verification setting the `cert_check` parameter to false.
+
 ### Cybercrime-Tracker
 Use the [Cybercrime-tracker.net](http://cybercrime-tracker.net/) service to assess whether an IP address, URL, domain, or FQDN has a C2 (Command & Control) entry in its database.
 
@@ -1058,4 +1065,4 @@ Add domain from observables in cases to Umbrella blacklist.
 
 #### Requirements
 
-To configure the responder, provide the url of the service as a value for the `integration_url` parameter.
\ No newline at end of file
+To configure the responder, provide the url of the service as a value for the `integration_url` parameter.