Skip to main content

FireEye Helix

fireeye-helix

Version: 1.2
Updated: Jul 13, 2023

Query FireEye Helix to gather enrichment data during an incident investigation.

Actions​

  • List Alerts (Enrichment) - Gather a list of all Helix alerts.
  • Get Alert (Enrichment) - Gather information on a specific alert.
  • Search Into Helix (Enrichment) - Query into Helix alerts and events.
  • List Events (Enrichment) - Gather a list of all Helix events.
  • List Alert Events (Enrichment) - Gather all events associated with a specific alert.
  • Get Event (Enrichment) - Gather information on a specific event.
  • Get Lists (Enrichment) - Gather all Helix lists within a specific time period.
  • List Alerts Fields (Enrichment) - List all available alert fields.
  • List Cases (Enrichment) - Gather all Helix cases within a specific time period.
  • List Incidents (Enrichment) - List all incidents within a specific time period.
  • List Rules (Enrichment) - List all Helix rules within a specific time period.
  • List Users (Enrichment) - List all Helix users.
  • Create Alert Helix (Notification) - Create a new Helix alert.
  • Update Alert Helix (Notification) - Update a specific Helix alert.
  • Update Case (Notification) - Update a specific case.
  • Close Alert Helix (Notification) - Close an existing Helix alert.
  • FireEye Helix Alerts Daemon (Daemon) - Automatically gather Helix alerts.

Change Log​

  • January 23, 2020 - First upload
  • July 13, 2023 (v1.1)
    • Updated the integration with Environmental Variables
    • Changed fields visibility
Status
Legal
Privacy Statement
Terms of Use

Copyright © 2024 by Sumo Logic, Inc.