Cisco Threat Response
Version: 1.2
Updated: Jul 21, 2023
Gather Cisco Threat Response threat intelligence data to enrich incident artifacts.
Actions
- Malware Search (Enrichment) - Search for specific malware strain.
- Sightings Search (Enrichment) - Search for sightings by malware name.
- Vulnerability Search (Enrichment) - Search for vulnerabilities by vulnerability type.
- Enrich Observables (Enrichment) - Gather a verdict for a given cyber observable.
- Extract Observable Type (Enrichment) - Extract Observable Type.
- List Malware (Enrichment) - Get a list of malware signatures.
- List Vulnerabilities (Enrichment) - Get a list of vulnerabilities.
- List Sightings (Enrichment) - Search available sightings.
Change Log
- February 21, 2020 - First upload
- May 22, 2020 - New actions added
- July 21, 2023 (v1.2) - Integration refactored