Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Cs malware - fixing incidents flow issues (#23034)
1. Fixed an issue with custom Mitre Attack 2. Fixed an issue with the behavior's pattern disposition details path. 3. Added mapping for File Sha256 for incidents' detections 4. Added unique transformer in get detections details task. * added input validation - is not empty. * updated rn * Fixed review comments
- Loading branch information
1 parent
1b2f2a7
commit df5d955
Showing
7 changed files
with
134 additions
and
17 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,13 @@ | ||
|
||
#### Playbooks | ||
##### CrowdStrike Falcon Malware - Verify Containment Actions | ||
Added input's validation. | ||
|
||
##### CrowdStrike Falcon Malware - Incident Enrichment | ||
Fixed a confusion task name. | ||
##### CrowdStrike Falcon - Get Detections by Incident | ||
- Added mapping for File Sha256 for incidents' detections. | ||
- Added unique transformer in get detections details task. | ||
##### CrowdStrike Falcon Malware - Investigation and Response | ||
- Fixed an issue with custom Mitre Attack | ||
- Fixed an issue with the behavior's pattern disposition details path. |
Binary file modified
BIN
+57.1 KB
(130%)
...ikeFalcon/doc_files/CrowdStrike_Falcon_Malware_-_Verify_Containment_Actions.png
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters