Skip to main content

HudsonRock Cavalier

hudsonrock-cavalier

Version: 1.0
Updated: Feb 03, 2023

HudsonRock Cavalier is a cybercrime intelligence data source composed of millions of machines compromised in global malware spreading campaigns. It is based on forensic technologies and operational know-how developed at the IDF's 8200 Unit to counter nation-state adversaries and professional threat-actors.

Actions

  • End User Protection (Enrichment) - Retrieve compromised computers for a given list of end users.
  • Domain Intelligence (Enrichment) - Retrieve compromised computers for given domains.
  • IP Intelligence (Enrichment) - Retrieve compromised computers for a given IP.
  • Assets Intelligence (Enrichment) - Retrieve compromised computers for a given operating system.
  • Third Party Risk Assessment (Enrichment) - Retrieve risk statistics for a given third party.

HudsonRock Cavalier in Automation Service and Cloud SOAR

  1. To configure the integration, log into the application, expand the configuration menu in the top right corner by hovering over the gear icon and click Automation.
    hudsonrock-cavalier
  2. In the Automation section, on the left menu, click Integrations.
    hudsonrock-cavalier
  3. After the list of the integrations appears, search for the integration and click on the row.
  4. The integration details will appear. Click on the "+" button to add new Resource.
    hudsonrock-cavalier
  5. Populate all the required fields (*) and then click Save.
    • Label. The desired name for the resource.
    • URL. Your HudsonRock URL.
    • API Key. Your HudsonRock API Key you copied earlier from HudsonRock.
      hudsonrock-cavalier
      hudsonrock-cavalier
  6. Click TEST SAVED SETTINGS.
    hudsonrock-cavalier
  7. You should receive a successful notification in the bottom right corner.
    hudsonrock-cavalier

Change Log

  • February 3, 2023 - First upload
Legal
Privacy Statement
Terms of Use

Copyright © 2024 by Sumo Logic, Inc.