KnowBe4 PhishER
Version: 1.6
Updated: Mar 4, 2024
KnowBe4 PhishER Identifies and responds to email threats faster with automatic prioritization for emails, also helps your InfoSec and Security Operations team cut through the inbox noise and respond to the most dangerous threats more quickly.
Actionsβ
- Get Message (Enrichment) - Returns a PhishER message by ID.
- Search Messages (Enrichment) - Returns paginated messages based on the specified Lucene query.
- PhishER Messages Daemon (Daemon) - Automatically pull messages based on the specified Lucene query.
KnowBe4 PhishER Configurationβ
Follow the steps from the KnowBe4 PhishER guide to create your authentication credentials.
KnowBe4 PhishER in Cloud SOAR
- Access integrations in the Automation Service or Cloud SOAR.
- After the list of the integrations appears, search/look for the integration and click on the row.
- The integration details will appear. Click on the "+" button to add new Resource.
- Populate all the required fields (*) and then click Save.
- Label. The name for the resource.
- URL. KnowBe4 PhishER host URL.
- API Token. Your KnowBe4 PhishER API key.
- To make sure the resource is working, hover over the resource and then click the pencil icon that appears on the right.
- Click TEST SAVED SETTINGS.
- You should receive a successful notification in the bottom right corner.
Change Logβ
- April 26, 2023 - First upload
- June 26, 2023 (v1.3) - Removed unnecessary empty lines and other little changes
- August 24, 2023 (v1.4)
- New Daemon: PhishER Messages Daemon
- September 26, 2023 (v1.5) - Updated Action: Get Message
- March 4, 2024 (v1.6) - Updated code for compatibility with Python 3.12