Sandbox generic enrichment - adding support for Joe Sandbox #20940

ssokolovich · 2022-09-05T14:15:38Z

Contributing to Cortex XSOAR Content

Make sure to register your contribution by filling the contribution registration form

The Pull Request will be reviewed only after the contribution registration form is filled.

Status

In Progress
Ready
In Hold - (Reason for hold)

Related Issues

fixes: link to the issue

Description

Adding Joe Sandbox to be supported in the Malware Investigation and Response pack.
Joe Sandbox will be added to the following playbooks:

Detonate and Analyze -a generic
Search For SHA in Sandbox - generic

Screenshots

Minimum version of Cortex XSOAR

6.0.0
6.1.0
6.2.0
6.5.0

Does it break backward compatibility?

Yes
- Further details:
No

Must have

Tests
Documentation

Packs/CommonPlaybooks/Playbooks/playbook-Search_For_Hash_In_Sandbox_-_Generic.yml

…ric_enrichment � Conflicts: � Packs/CommonPlaybooks/ReleaseNotes/2_3_1.md

…ric_enrichment � Conflicts: � Packs/CommonPlaybooks/ReleaseNotes/2_3_2.md � Packs/CommonPlaybooks/pack_metadata.json

ssokolovich · 2022-09-22T12:33:30Z

Waiting for this PR to be merged - @altmannyarden
#20900

…ric_enrichment � Conflicts: � Packs/CommonPlaybooks/ReleaseNotes/2_3_4.md � Packs/CommonPlaybooks/pack_metadata.json

…ric_enrichment

Packs/CommonPlaybooks/Playbooks/playbook-Detonate_and_Analyze_File_-_Generic.yml

…ric_enrichment � Conflicts: � Packs/JoeSecurity/pack_metadata.json

Done

Done.

Packs/CommonPlaybooks/Playbooks/playbook-Search_For_Hash_In_Sandbox_-_Generic.yml

Done.

ShirleyDenkberg · 2022-10-30T09:40:08Z

@altmannyarden Doc review completed.

ssokolovich added 2 commits September 5, 2022 16:59

Added support for Joe Sandbox search

957a871

Updated RN

1eb2aa0

ssokolovich requested a review from altmannyarden September 5, 2022 14:15

ssokolovich requested review from michalgold and idovandijk as code owners September 5, 2022 14:15

ssokolovich removed request for michalgold and idovandijk September 5, 2022 14:15

altmannyarden reviewed Sep 13, 2022

View reviewed changes

Packs/CommonPlaybooks/Playbooks/playbook-Search_For_Hash_In_Sandbox_-_Generic.yml Outdated Show resolved Hide resolved

ssokolovich added 3 commits September 13, 2022 14:44

Added Jow sandbox in the PB and Readme description.

a1cc389

Merge branch 'master' of github.com:demisto/content into sandbox_gene…

f16615b

…ric_enrichment � Conflicts: � Packs/CommonPlaybooks/ReleaseNotes/2_3_1.md

Resolved conflicts.

a02fcf2

ssokolovich requested a review from altmannyarden September 14, 2022 07:41

ssokolovich added 4 commits September 21, 2022 15:04

Added joe sandbox new detonate playbook + add it to the generic one.

5665619

Updated RN

351f7aa

Merge branch 'master' of github.com:demisto/content into sandbox_gene…

f36ad77

…ric_enrichment � Conflicts: � Packs/CommonPlaybooks/ReleaseNotes/2_3_2.md � Packs/CommonPlaybooks/pack_metadata.json

Updated RN

4454763

ssokolovich added 6 commits October 20, 2022 13:13

Fixed issues and bugs

a7b1f69

Merge branch 'master' of github.com:demisto/content into sandbox_gene…

fa2e498

…ric_enrichment � Conflicts: � Packs/CommonPlaybooks/ReleaseNotes/2_3_4.md � Packs/CommonPlaybooks/pack_metadata.json

Updated RN

6e0a3f9

Merge branch 'master' of github.com:demisto/content into sandbox_gene…

a2b6cab

…ric_enrichment

Fixed issue with non-Mitre findings

7c0a8e3

Merge branch 'master' of github.com:demisto/content into sandbox_gene…

bc50bf1

…ric_enrichment

altmannyarden reviewed Oct 23, 2022

View reviewed changes

Packs/CommonPlaybooks/Playbooks/playbook-Detonate_and_Analyze_File_-_Generic.yml Show resolved Hide resolved

altmannyarden reviewed Oct 23, 2022

View reviewed changes

Packs/CommonPlaybooks/Playbooks/playbook-Detonate_and_Analyze_File_-_Generic.yml Outdated Show resolved Hide resolved

Fixed review comments

9726ef4

ssokolovich requested a review from altmannyarden October 23, 2022 19:01

ssokolovich assigned jrosenpanw Oct 27, 2022

altmannyarden approved these changes Oct 27, 2022

View reviewed changes

jrosenpanw assigned ShirleyDenkberg Oct 27, 2022

ssokolovich and others added 4 commits October 30, 2022 09:32

Merge branch 'master' of github.com:demisto/content into sandbox_gene…

0db4fc0

…ric_enrichment � Conflicts: � Packs/JoeSecurity/pack_metadata.json

Update playbook-Detonate_and_Analyze_File_-_Generic.yml

ee6651c

Done

Update playbook-Detonate_and_Analyze_File_-_Generic_README.md

784f896

Done.

Update playbook-Search_For_Hash_In_Sandbox_-_Generic.yml

559ebe9

Done.

ShirleyDenkberg reviewed Oct 30, 2022

View reviewed changes

Packs/CommonPlaybooks/Playbooks/playbook-Search_For_Hash_In_Sandbox_-_Generic.yml Outdated Show resolved Hide resolved

ShirleyDenkberg and others added 5 commits October 30, 2022 10:01

Update playbook-Detonate_and_Analyze_File_-_JoeSecurity.yml

1bfa41e

Done.

Fixed review comments

56d1b42

Fixed validations issue

4f9fa35

Update playbook-Detonate_and_Analyze_File_-_JoeSecurity_README.md

e457f30

Done.

Update 1_1_0.md

afc0321

Done.

ShirleyDenkberg requested review from ShirleyDenkberg and removed request for ShirleyDenkberg October 30, 2022 09:39

ShirleyDenkberg added the docs-approved label Oct 30, 2022

ssokolovich merged commit 9f120a1 into master Oct 30, 2022

ssokolovich deleted the sandbox_generic_enrichment branch October 30, 2022 11:14

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Sandbox generic enrichment - adding support for Joe Sandbox #20940

Sandbox generic enrichment - adding support for Joe Sandbox #20940

ssokolovich commented Sep 5, 2022 •

edited

Loading

ssokolovich commented Sep 22, 2022

ShirleyDenkberg commented Oct 30, 2022

Sandbox generic enrichment - adding support for Joe Sandbox #20940

Sandbox generic enrichment - adding support for Joe Sandbox #20940

Conversation

ssokolovich commented Sep 5, 2022 • edited Loading

Contributing to Cortex XSOAR Content

Status

Related Issues

Description

Screenshots

Minimum version of Cortex XSOAR

Does it break backward compatibility?

Must have

ssokolovich commented Sep 22, 2022

ShirleyDenkberg commented Oct 30, 2022

ssokolovich commented Sep 5, 2022 •

edited

Loading