Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Malware Investigation and response v2 #21554

Merged
merged 63 commits into from Oct 25, 2022
Merged

Malware Investigation and response v2 #21554

merged 63 commits into from Oct 25, 2022

Commits on Sep 29, 2022

  1. Added Triage SLA to the Malware_Investigation_&_Response_Incident_Han… 

    …dler playbook
    @ssokolovich
    ssokolovich committed Sep 29, 2022
    Copy the full SHA
    bdadc91 View commit details
    Browse the repository at this point in the history

  2. Added for MDE - 

    - SLAs
- Batch Query
- Threat Hunting playbook
    @ssokolovich
    ssokolovich committed Sep 29, 2022
    Copy the full SHA
    281d5c0 View commit details
    Browse the repository at this point in the history

  3. Updated SLAs description.

    @ssokolovich
    ssokolovich committed Sep 29, 2022
    Copy the full SHA
    6cc8ef7 View commit details
    Browse the repository at this point in the history

  4. Edited the timeline section

    @ssokolovich
    ssokolovich committed Sep 29, 2022
    Copy the full SHA
    368c8af View commit details
    Browse the repository at this point in the history

  5. Merge branch 'master' of github.com:demisto/content into malware_inci… 

    …dent_and_resposne_v2
    @ssokolovich
    ssokolovich committed Sep 29, 2022
    Copy the full SHA
    02b6879 View commit details
    Browse the repository at this point in the history

  6. CrowdStike and cortex xdr enhancments: 

    - sla
- Threat hunting
    @ssokolovich
    ssokolovich committed Sep 29, 2022
    Copy the full SHA
    82c49b1 View commit details
    Browse the repository at this point in the history

  7. Added Disable Account button

    @ssokolovich
    ssokolovich committed Sep 29, 2022
    Copy the full SHA
    5c9bc8e View commit details
    Browse the repository at this point in the history

  8. Merge branch 'master' of github.com:demisto/content into malware_inci… 

    …dent_and_resposne_v2
    @ssokolovich
    ssokolovich committed Sep 29, 2022
    Copy the full SHA
    b6ab2fb View commit details
    Browse the repository at this point in the history

  9. Added the assign analyst

    @ssokolovich
    ssokolovich committed Sep 29, 2022
    Copy the full SHA
    51192af View commit details
    Browse the repository at this point in the history

Commits on Oct 2, 2022

  1. Fixed validations

    @ssokolovich
    ssokolovich committed Oct 2, 2022
    Copy the full SHA
    5ab1227 View commit details
    Browse the repository at this point in the history

  2. Fixed validations

    @ssokolovich
    ssokolovich committed Oct 2, 2022
    Copy the full SHA
    5e2018c View commit details
    Browse the repository at this point in the history

  3. Merge branch 'master' of github.com:demisto/content into malware_inci… 

    …dent_and_resposne_v2
    @ssokolovich
    ssokolovich committed Oct 2, 2022
    Copy the full SHA
    3c48242 View commit details
    Browse the repository at this point in the history

  4. Fixed validations

    @ssokolovich
    ssokolovich committed Oct 2, 2022
    Copy the full SHA
    57e71a7 View commit details
    Browse the repository at this point in the history

  5. Updated RN + fixed validations

    @ssokolovich
    ssokolovich committed Oct 2, 2022
    Copy the full SHA
    6e8c3bd View commit details
    Browse the repository at this point in the history

  6. Merge branch 'master' of github.com:demisto/content into malware_inci… 

    …dent_and_resposne_v2
    @ssokolovich
    ssokolovich committed Oct 2, 2022
    Copy the full SHA
    c54c8e8 View commit details
    Browse the repository at this point in the history

  7. Fixed validations

    @ssokolovich
    ssokolovich committed Oct 2, 2022
    Copy the full SHA
    e7a5088 View commit details
    Browse the repository at this point in the history

  8. Merge branch 'master' of github.com:demisto/content into malware_inci… 

    …dent_and_resposne_v2

� Conflicts:
�	Packs/CrowdStrikeFalcon/ReleaseNotes/1_9_4.md
�	Packs/MicrosoftDefenderAdvancedThreatProtection/pack_metadata.json
    @ssokolovich
    ssokolovich committed Oct 2, 2022
    Copy the full SHA
    8ad0eaa View commit details
    Browse the repository at this point in the history

  9. fixed conflicts

    @ssokolovich
    ssokolovich committed Oct 2, 2022
    Copy the full SHA
    597444d View commit details
    Browse the repository at this point in the history

Commits on Oct 3, 2022

  1. Merge branch 'master' of github.com:demisto/content into malware_inci… 

    …dent_and_resposne_v2
    @ssokolovich
    ssokolovich committed Oct 3, 2022
    Copy the full SHA
    96adcb1 View commit details
    Browse the repository at this point in the history

Commits on Oct 6, 2022

  1. Fixed URL & Domain issue where the value was set as simple (and not c… 

    …ontext)
    @ssokolovich
    ssokolovich committed Oct 6, 2022
    Copy the full SHA
    4ebb901 View commit details
    Browse the repository at this point in the history

  2. Merge branch 'master' of github.com:demisto/content into malware_inci… 

    …dent_and_resposne_v2

� Conflicts:
�	Packs/CommonTypes/ReleaseNotes/3_3_23.md
�	Packs/CortexXDR/ReleaseNotes/4_8_20.md
�	Packs/CrowdStrikeFalcon/ReleaseNotes/1_9_5.md
    @ssokolovich
    ssokolovich committed Oct 6, 2022
    Copy the full SHA
    fd384a6 View commit details
    Browse the repository at this point in the history

  3. Updated RN + resolved conflicts

    @ssokolovich
    ssokolovich committed Oct 6, 2022
    Copy the full SHA
    3cd5058 View commit details
    Browse the repository at this point in the history

  4. Fixed issue with URL and Domain inputs.

    @ssokolovich
    ssokolovich committed Oct 6, 2022
    Copy the full SHA
    4cf8de3 View commit details
    Browse the repository at this point in the history

  5. Fixed logical issue when no IOCs to hunt were selected

    @ssokolovich
    ssokolovich committed Oct 6, 2022
    Copy the full SHA
    7be3416 View commit details
    Browse the repository at this point in the history

  6. Merge branch 'master' of github.com:demisto/content into malware_inci… 

    …dent_and_resposne_v2
    @ssokolovich
    ssokolovich committed Oct 6, 2022
    Copy the full SHA
    d128b04 View commit details
    Browse the repository at this point in the history

Commits on Oct 12, 2022

  1. fixed review on XDR true positive handling inputs description.

    @ssokolovich
    ssokolovich committed Oct 12, 2022
    Copy the full SHA
    ed75b16 View commit details
    Browse the repository at this point in the history

  2. fixed review on MDE and CS true positive handling inputs description.

    @ssokolovich
    ssokolovich committed Oct 12, 2022
    Copy the full SHA
    2d3fe6d View commit details
    Browse the repository at this point in the history

  3. Merge branch 'master' of github.com:demisto/content into malware_inci… 

    …dent_and_resposne_v2

� Conflicts:
�	Packs/CommonTypes/ReleaseNotes/3_3_24.md
�	Packs/CortexXDR/ReleaseNotes/4_8_21.md
�	Packs/CrowdStrikeFalcon/ReleaseNotes/1_9_6.md
�	Packs/MicrosoftDefenderAdvancedThreatProtection/ReleaseNotes/1_13_1.md
    @ssokolovich
    ssokolovich committed Oct 12, 2022
    Copy the full SHA
    13e4b6c View commit details
    Browse the repository at this point in the history

  4. Resolved conflicts

    @ssokolovich
    ssokolovich committed Oct 12, 2022
    Copy the full SHA
    d8aeaef View commit details
    Browse the repository at this point in the history

  5. Resolved conflicts + updated RN

    @ssokolovich
    ssokolovich committed Oct 12, 2022
    Copy the full SHA
    9b29987 View commit details
    Browse the repository at this point in the history

Commits on Oct 13, 2022

  1. Fixed Partial review comments.

    @ssokolovich
    ssokolovich committed Oct 13, 2022
    Copy the full SHA
    81b5d0d View commit details
    Browse the repository at this point in the history

  2. Merge branch 'master' of github.com:demisto/content into malware_inci… 

    …dent_and_resposne_v2
    @ssokolovich
    ssokolovich committed Oct 13, 2022
    Copy the full SHA
    191fd28 View commit details
    Browse the repository at this point in the history

  3. Fixed Partial review comments.

    @ssokolovich
    ssokolovich committed Oct 13, 2022
    Copy the full SHA
    8eccac7 View commit details
    Browse the repository at this point in the history

Commits on Oct 18, 2022

  1. Fixed review comments

    @ssokolovich
    ssokolovich committed Oct 18, 2022
    Copy the full SHA
    e36c6e9 View commit details
    Browse the repository at this point in the history

  2. Merge branch 'master' of github.com:demisto/content into malware_inci… 

    …dent_and_resposne_v2
    @ssokolovich
    ssokolovich committed Oct 18, 2022
    Copy the full SHA
    62ff283 View commit details
    Browse the repository at this point in the history

  3. Fixed review comments

    @ssokolovich
    ssokolovich committed Oct 18, 2022
    Copy the full SHA
    43d5143 View commit details
    Browse the repository at this point in the history

Commits on Oct 19, 2022

  1. Fixed review comments

    @ssokolovich
    ssokolovich committed Oct 19, 2022
    Copy the full SHA
    f7273d4 View commit details
    Browse the repository at this point in the history

  2. Merge branch 'master' of github.com:demisto/content into malware_inci… 

    …dent_and_resposne_v2
    @ssokolovich
    ssokolovich committed Oct 19, 2022
    Copy the full SHA
    f08fe9b View commit details
    Browse the repository at this point in the history

Commits on Oct 20, 2022

  1. Merge branch 'master' of github.com:demisto/content into malware_inci… 

    …dent_and_resposne_v2

� Conflicts:
�	Packs/CommonTypes/ReleaseNotes/3_3_25.md
    @ssokolovich
    ssokolovich committed Oct 20, 2022
    Copy the full SHA
    2d02958 View commit details
    Browse the repository at this point in the history

  2. Fixed conflicts

    @ssokolovich
    ssokolovich committed Oct 20, 2022
    Copy the full SHA
    3e0c4fe View commit details
    Browse the repository at this point in the history

  3. Update 3_3_26.md 

    Done.
    @ShirleyDenkberg
    ShirleyDenkberg committed Oct 20, 2022
    Copy the full SHA
    fcd9550 View commit details
    Browse the repository at this point in the history

  4. Update playbook-Cortex_XDR_-_True_Positive_Incident_Handling.yml 

    Done.
    @ShirleyDenkberg
    ShirleyDenkberg committed Oct 20, 2022
    Copy the full SHA
    cafed6f View commit details
    Browse the repository at this point in the history

  5. Update playbook-Cortex_XDR_-_True_Positive_Incident_Handling_README.md 

    Done.
    @ShirleyDenkberg
    ShirleyDenkberg committed Oct 20, 2022
    Copy the full SHA
    50929bf View commit details
    Browse the repository at this point in the history

  6. Update playbook-Cortex_XDR_Malware_-_Investigation_And_Response.yml 

    Done.
    @ShirleyDenkberg
    ShirleyDenkberg committed Oct 20, 2022
    Copy the full SHA
    87b4ade View commit details
    Browse the repository at this point in the history

  7. Update playbook-Malware_Investigation_and_Response_Incident_Handler.yml 

    Done.
    @ShirleyDenkberg
    ShirleyDenkberg committed Oct 20, 2022
    Copy the full SHA
    e06896c View commit details
    Browse the repository at this point in the history

  8. Update 2_0_0.md 

    Done.
    @ShirleyDenkberg
    ShirleyDenkberg committed Oct 20, 2022
    Copy the full SHA
    704208a View commit details
    Browse the repository at this point in the history

  9. Update playbook-MDE_-_Host_Advanced_Hunting.yml 

    Done.
    @ShirleyDenkberg
    ShirleyDenkberg committed Oct 20, 2022
    Copy the full SHA
    7910d46 View commit details
    Browse the repository at this point in the history

  10. Update playbook-MDE_-_Host_Advanced_Hunting_README.md 

    Done.
    @ShirleyDenkberg
    ShirleyDenkberg committed Oct 20, 2022
    Copy the full SHA
    0893c46 View commit details
    Browse the repository at this point in the history

  11. Update playbook-MDE_Malware_-_Investigation_and_Response_README.md 

    Done
    @ShirleyDenkberg
    ShirleyDenkberg committed Oct 20, 2022
    Copy the full SHA
    ea908ab View commit details
    Browse the repository at this point in the history

  12. Update playbook-MDE_Malware_-_Investigation_and_Response.yml 

    Done.
    @ShirleyDenkberg
    ShirleyDenkberg committed Oct 20, 2022
    Copy the full SHA
    557c58d View commit details
    Browse the repository at this point in the history

  13. Update playbook-MDE_-_True_Positive_Incident_Handling_README.md 

    Done.
    @ShirleyDenkberg
    ShirleyDenkberg committed Oct 20, 2022
    Copy the full SHA
    f93f50d View commit details
    Browse the repository at this point in the history

  14. Update playbook-MDE_-_True_Positive_Incident_Handling.yml 

    Done.
    @ShirleyDenkberg
    ShirleyDenkberg committed Oct 20, 2022
    Copy the full SHA
    0dd0201 View commit details
    Browse the repository at this point in the history

Commits on Oct 23, 2022

  1. Update playbook-CrowdStrike_Falcon_-_True_Positive_Incident_Handling.yml 

    Done.
    @ShirleyDenkberg
    ShirleyDenkberg committed Oct 23, 2022
    Copy the full SHA
    18d34de View commit details
    Browse the repository at this point in the history

  2. Update playbook-CrowdStrike_Falcon_-_True_Positive_Incident_Handling_… 

    …README.md

Done.
    @ShirleyDenkberg
    ShirleyDenkberg committed Oct 23, 2022
    Copy the full SHA
    c148100 View commit details
    Browse the repository at this point in the history

  3. Update playbook-CrowdStrike_Falcon_Malware_-_Investigation_and_Respon… 

    …se.yml

Done.
    @ShirleyDenkberg
    ShirleyDenkberg committed Oct 23, 2022
    Copy the full SHA
    39735d0 View commit details
    Browse the repository at this point in the history

  4. Merge branch 'master' into malware_incident_and_resposne_v2

    @ssokolovich
    ssokolovich committed Oct 23, 2022
    Copy the full SHA
    7bacb60 View commit details
    Browse the repository at this point in the history

  5. Merge branch 'master' of github.com:demisto/content into malware_inci… 

    …dent_and_resposne_v2
    @ssokolovich
    ssokolovich committed Oct 23, 2022
    Copy the full SHA
    194782e View commit details
    Browse the repository at this point in the history

Commits on Oct 24, 2022

  1. Fixed Validation with the playbook name

    @ssokolovich
    ssokolovich committed Oct 24, 2022
    Copy the full SHA
    bf717e0 View commit details
    Browse the repository at this point in the history

  2. Merge branch 'master' of github.com:demisto/content into malware_inci… 

    …dent_and_resposne_v2
    @ssokolovich
    ssokolovich committed Oct 24, 2022
    Copy the full SHA
    25867fe View commit details
    Browse the repository at this point in the history

  3. Merge branch 'master' into malware_incident_and_resposne_v2

    @ssokolovich
    ssokolovich committed Oct 24, 2022
    Copy the full SHA
    5423035 View commit details
    Browse the repository at this point in the history

  4. Merge branch 'master' into malware_incident_and_resposne_v2

    @ssokolovich
    ssokolovich committed Oct 24, 2022
    Copy the full SHA
    e4ad5c1 View commit details
    Browse the repository at this point in the history

Commits on Oct 25, 2022

  1. Merge branch 'master' of github.com:demisto/content into malware_inci… 

    …dent_and_resposne_v2
    @ssokolovich
    ssokolovich committed Oct 25, 2022
    Copy the full SHA
    1e3ecd2 View commit details
    Browse the repository at this point in the history

  2. Merge remote-tracking branch 'origin/malware_incident_and_resposne_v2… 

    …' into malware_incident_and_resposne_v2
    @ssokolovich
    ssokolovich committed Oct 25, 2022
    Copy the full SHA
    62c7d75 View commit details
    Browse the repository at this point in the history