Panda EDR

Version: 1.3
Updated: Nov 24, 2023

Remotely monitor and manage devices that run these Panda Aether platform endpoint security products:

• Adaptive Defense and Adaptive Defense 360
• Endpoint Protection and Endpoint Protection Plus

Actions

• Get Device Protection Status (Enrichment) - Retrieves a list of devices with their protection status and other device information.
• Get Security Overall Summary (Enrichment) - Retrieves a security overview that includes security event counters for a specified time period.
• Isolate Specific Devices (Containment) Isolates the specified devices. When you isolate a device, communication to and from the device is denied.
• List Device Info (Enrichment) - Retrieves a list of devices, and additional information, such as the device IP address and operating system.
• List Network Unmanaged Devices (Enrichment) - Retrieves a list of unmanaged devices discovered on the network.
• List Security Events for Specific Devices (Enrichment) - Retrieves a list of security events of the specified type for the specified device for a specific time period.
• Scan Device (Enrichment) - Starts a task to scan the specified devices immediately.
• Start Action On Specified Device (Containment) - Initiates an action on the specified devices. For example, sends an action to reboot a device.
• Stop Device Isolation (Containment) - Stops isolation on the specified devices.

Category

EDR

Change Log

• March 1, 2022 - First upload
• July 7, 2023 (v1.1) - Updated the integration with Environmental Variables
• November 23, 2023 (v1.2)
  • Fixed bugs that prevented these actions from working properly
    • Stop Device Isolation
    • Start Action On Specified Device
    • Scan Device
    • Isolate Specific Devices
  • Extended output mappings
  • Refined labels and hints
  • Improved error handling
  • Code refactoring and optimisation
  • Changed Logo
• November 24, 2023 (v1.3)
  • Fixed Token Issue