HudsonRock Cavalier

Version: 1.0
Updated: Feb 03, 2023

HudsonRock Cavalier is a cybercrime intelligence data source composed of millions of machines compromised in global malware spreading campaigns. It is based on forensic technologies and operational know-how developed at the IDF's 8200 Unit to counter nation-state adversaries and professional threat-actors.

Actions

• End User Protection (Enrichment) - Retrieve compromised computers for a given list of end users.
• Domain Intelligence (Enrichment) - Retrieve compromised computers for given domains.
• IP Intelligence (Enrichment) - Retrieve compromised computers for a given IP.
• Assets Intelligence (Enrichment) - Retrieve compromised computers for a given operating system.
• Third Party Risk Assessment (Enrichment) - Retrieve risk statistics for a given third party.

HudsonRock Cavalier in Automation Service and Cloud SOAR

1. Access integrations in the Automation Service or Cloud SOAR.
2. After the list of the integrations appears, search for the integration and click on the row.
3. The integration details will appear. Click on the "+" button to add new Resource.
   
4. Populate all the required fields (*) and then click Save.
   • Label. The desired name for the resource.
   • URL. Your HudsonRock URL.
   • API Key. Your HudsonRock API Key you copied earlier from HudsonRock.
     
     
5. Click TEST SAVED SETTINGS.
   
6. You should receive a successful notification in the bottom right corner.
   

Change Log

• February 3, 2023 - First upload