Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Deprecate Picus Community #29573

Merged
merged 15 commits into from Sep 18, 2023
Merged

Deprecate Picus Community #29573

Show file tree
Hide file tree
Changes from 12 commits
Commits
Show all changes
15 commits
Select commit Hold shift + click to select a range
040d474
Merge branch 'master' into github_workflow_partner
edik24 Sep 10, 2023
7b8e0cc
Merge branch 'master' into github_workflow_partner
edik24 Sep 10, 2023
c7b6e6d
Picus NG display name
edik24 Sep 10, 2023
a2c9430
Picus update
edik24 Sep 10, 2023
0f63042
Picus update
edik24 Sep 11, 2023
8885e2c
Merge branch 'master' into deprecate-picus-community
edik24 Sep 11, 2023
c76a487
Picus update
edik24 Sep 11, 2023
510ed3d
Merge remote-tracking branch 'origin/deprecate-picus-community' into …
edik24 Sep 11, 2023
37b9af0
Picus update
edik24 Sep 11, 2023
c92fb4e
Picus update
edik24 Sep 12, 2023
9762c72
Picus update
edik24 Sep 13, 2023
a5db7e6
Merge branch 'master' into deprecate-picus-community
RotemAmit Sep 14, 2023
7dd10e8
Picus update
edik24 Sep 18, 2023
36e55e9
Merge remote-tracking branch 'origin/deprecate-picus-community' into …
edik24 Sep 18, 2023
cabf83b
Picus update
edik24 Sep 18, 2023
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Jump to
Jump to file
Failed to load files.
Diff view
Diff view
5 changes: 3 additions & 2 deletions Packs/PICUS/Integrations/PICUS/PICUS.yml
View file
Open in desktop
Expand Up @@ -24,9 +24,10 @@ configuration:
name: proxy
type: 8
required: false
description: Continuous Breach And Attack Simulation
display: PICUS
description: Deprecated. Use PicusAutomation instead.
display: PICUS (Deprecated)
name: PICUS
deprecated: true
script:
commands:
- arguments:
Expand Down
3 changes: 3 additions & 0 deletions Packs/PICUS/ReleaseNotes/1_0_4.md
View file
Open in desktop
@@ -0,0 +1,3 @@
#### Integrations
##### PICUS (Deprecated)
- Deprecated pack
edik24 marked this conversation as resolved.
Show resolved Hide resolved
12 changes: 7 additions & 5 deletions Packs/PICUS/pack_metadata.json
View file
Open in desktop
@@ -1,16 +1,18 @@
{
"name": "PICUS",
"description": "Picus is Breach and Attack Simulation tools.",
"name": "PICUS (Deprecated)",
"description": "Deprecated. Use PicusAutomation instead.",
"support": "community",
"currentVersion": "1.0.3",
"currentVersion": "1.0.4",
"author": "Murat Ozfidan",
"url": "",
"email": "",
"created": "2021-02-16T12:21:20Z",
"categories": [
"Data Enrichment & Threat Intelligence"
],
"tags": ["Breach Simulation"],
"tags": [
"Breach Simulation"
],
"useCases": [],
"keywords": [],
"githubUser": [
Expand All @@ -20,4 +22,4 @@
"xsoar",
"marketplacev2"
]
}
}
84 changes: 42 additions & 42 deletions Packs/PicusNGAutomation/Integrations/PicusNG/PicusNG.yml
View file
Open in desktop
Expand Up @@ -19,144 +19,144 @@ configuration:
name: picus_apikey
required: true
type: 4
description: Picus - The Complete Security Control Validation NG Platform
display: Picus Security
description: Picus - The Complete Security Control Validation NG Platform.
display: Picus Security NG
name: PicusNG
script:
commands:
- description: This command returns the simulation agent list with agent name, id, status, agent type and platform information as in Picus platform > Agents.
name: picus-get-agent-list
- arguments:
- description: Agent id
- description: Agent id.
name: id
required: true
description: This command returns agent name, status, agent type, platform and also mitigation devices and attack modules using the agent ID.
name: picus-get-agent-detail
- arguments:
- description: ID of the agent
- description: ID of the agent.
name: agent_id
required: true
- defaultValue: this simulation created with cortex app
description: Description of the simulation
description: Description of the simulation.
name: description
- description: Name of the simulation
- description: Name of the simulation.
name: name
required: true
- auto: PREDEFINED
description: Schedule now state
description: Schedule now state.
name: schedule_now
predefined:
- 'True'
- 'False'
required: true
- description: Id of the template
- description: Id of the template.
name: template_id
required: true
description: |-
This command creates and runs a simulation as requested; scheduled or instant.
You can create a simulation by giving your simulation a name and adding the template ID, agent ID.
name: picus-create-simulation
- arguments:
- description: Pagination value
- description: Pagination value.
name: offset
- description: Pagination value
- description: Pagination value.
name: limit
description: This command returns template list that contains template name, id, description, content type, category as in Picus Platform> Threat Templates.
name: picus-get-template-list
- description: This command returns the agent name, id, status, agent installation information and the token expiration information.
name: picus-get-integration-agent-list
- arguments:
- description: Pagination value
- description: Pagination value.
name: offset
- description: Pagination value
- description: Pagination value.
name: limit
description: This command returns the list of you latest simulation result overview as in Picus Platform > Simulations tab. Latest simulation run results are included.
name: picus-get-simulation-list
outputs:
- contextPath: Picus.simulationlist.simulation_id
description: ID of the simulation
description: ID of the simulation.
type: Number
- arguments:
- description: Simulation ID
- description: Simulation ID.
name: id
required: true
description: This command runs the existing simulation using the Simulation ID.
name: picus-simulate-now
- arguments:
- description: Simulation ID
- description: Simulation ID.
name: id
required: true
description: This command returns the information about a specific simulation.
name: picus-get-simulation-detail
- arguments:
- description: Simulation ID
- description: Simulation ID.
name: id
required: true
description: This command returns detailed information about simulation results including Prevention and Detection result details for the latest simulation run.
name: picus-get-latest-simulation-result
outputs:
- contextPath: Picus.latestSimulationResult.simulation_run_id
description: Simulation Run ID
description: Simulation Run ID.
type: String
- contextPath: Picus.latestSimulationResult.simulation_id
description: Simulation ID
description: Simulation ID.
type: String
- contextPath: Picus.latestSimulationResult.status
description: Simulation Status
description: Simulation Status.
type: String
- arguments:
- description: Simulation ID
- description: Simulation ID.
name: id
required: true
- description: Simulation Run ID
- description: Simulation Run ID.
name: run_id
required: true
description: This command returns detailed information about simulation results including Prevention and Detection result details for a specific simulation run with run id.
name: picus-get-simulation-result
- arguments:
- description: Simulation ID
- description: Simulation ID.
name: id
required: true
- description: Simulation Run ID
- description: Simulation Run ID.
name: run_id
required: true
- description: Pagination value
- description: Pagination value.
name: limit
- description: Pagination value
- description: Pagination value.
name: offset
description: This command returns simulation result based on threats. Threat result includes threat id and name, prevention result and action count.
name: picus-get-simulation-threats
outputs:
- contextPath: Picus.SimulationThreats
description: Threat list of simulation
description: Threat list of simulation.
type: String
- arguments:
- description: Simulation ID
- description: Simulation ID.
name: id
required: true
- description: Simulation Run ID
- description: Simulation Run ID.
name: run_id
required: true
- description: Threat ID list ("111,222,333,...") or single threat ID can be given.
name: threat_ids
required: true
- description: Pagination value
- description: Pagination value.
name: limit
- description: Pagination value
- description: Pagination value.
name: offset
description: This command returns simulation result based on action list using threat ID, simulation ID and simulation run ID.
name: picus-get-simulation-actions
outputs:
- contextPath: Picus.SimulationActions
description: Action Results(ID and result combination)
description: Action Results(ID and result combination).
type: String
- arguments:
- description: Simulation ID list ("111,222,333,...") or single simulation ID can be given.
name: ids
description: This command returns mitigation device information as obtained under Picus platform > Mitigation > Vendor Based Mitigations. Vendor based mitigation devices can be fetched using this command.
name: picus-get-mitigation-devices
- arguments:
- description: Mitigation Device ID
- description: Mitigation Device ID.
name: device_id
required: true
- description: Action ID list ("111,222,333,...") or single action ID can be given.
Expand All @@ -165,37 +165,37 @@ script:
description: This command returns action based signature suggestions.
name: picus-get-signature-list
- arguments:
- description: Simulation Agent ID
- description: Simulation Agent ID.
name: agent_id
required: true
- description: 'Device ID '
- description: Device ID.
name: device_id
- description: Simulation ID
- description: Simulation ID.
name: simulation_id
required: true
description: Set parameter on playbook. (This command is only used on playbook)
description: Set parameter on playbook. (This command is only used on playbook).
name: picus-set-paramPB
outputs:
- contextPath: Picus.param.agent_id
description: Agent ID
description: Agent ID.
type: String
- contextPath: Picus.param.device_id
description: Device ID
description: Device ID.
type: String
- contextPath: Picus.param.simulation_id
description: Simulation ID
description: Simulation ID.
type: String
- arguments:
- description: Threat id and result combine. Used for playbook.
name: threatinfo
required: true
description: Filter insecure attacks on playbook. (This command is only used on playbook)
description: Filter insecure attacks on playbook. (This command is only used on playbook).
name: picus-filter-insecure-attacks
outputs:
- contextPath: Picus.filterinsecure
description: Insecure Attack List
description: Insecure Attack List.
type: String
dockerimage: demisto/python3:3.10.13.72123
dockerimage: demisto/python3:3.10.13.73190
runonce: false
script: '-'
subtype: python3
Expand Down
4 changes: 4 additions & 0 deletions Packs/PicusNGAutomation/ReleaseNotes/1_0_9.md
View file
Open in desktop
@@ -0,0 +1,4 @@
#### Integrations
##### Picus Security NG
- Updated integration display name
edik24 marked this conversation as resolved.
Show resolved Hide resolved
edik24 marked this conversation as resolved.
Show resolved Hide resolved
- Updated the Docker image to: demisto/python3:3.10.13.73190.
2 changes: 1 addition & 1 deletion Packs/PicusNGAutomation/pack_metadata.json
View file
Open in desktop
Expand Up @@ -2,7 +2,7 @@
"name": "PicusNGAutomation",
"description": "Run commands on Picus NG and automate security validation with playbooks.",
"support": "partner",
"currentVersion": "1.0.8",
"currentVersion": "1.0.9",
"author": "Picus Security",
"url": "http://support.picussecurity.com",
"email": "blueteam@picussecurity.com",
Expand Down