FireEye Helix
Version: 1.2
Updated: Jul 13, 2023
Query FireEye Helix to gather enrichment data during an incident investigation.
Actionsβ
- List Alerts (Enrichment) - Gather a list of all Helix alerts.
- Get Alert (Enrichment) - Gather information on a specific alert.
- Search Into Helix (Enrichment) - Query into Helix alerts and events.
- List Events (Enrichment) - Gather a list of all Helix events.
- List Alert Events (Enrichment) - Gather all events associated with a specific alert.
- Get Event (Enrichment) - Gather information on a specific event.
- Get Lists (Enrichment) - Gather all Helix lists within a specific time period.
- List Alerts Fields (Enrichment) - List all available alert fields.
- List Cases (Enrichment) - Gather all Helix cases within a specific time period.
- List Incidents (Enrichment) - List all incidents within a specific time period.
- List Rules (Enrichment) - List all Helix rules within a specific time period.
- List Users (Enrichment) - List all Helix users.
- Create Alert Helix (Notification) - Create a new Helix alert.
- Update Alert Helix (Notification) - Update a specific Helix alert.
- Update Case (Notification) - Update a specific case.
- Close Alert Helix (Notification) - Close an existing Helix alert.
- FireEye Helix Alerts Daemon (Daemon) - Automatically gather Helix alerts.
Change Logβ
- January 23, 2020 - First upload
- July 13, 2023 (v1.1)
- Updated the integration with Environmental Variables
- Changed fields visibility