New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Inputs groups core playbooks improvement xsiam #32125
Inputs groups core playbooks improvement xsiam #32125
Conversation
…s_core_playbooks_improvement_xsiam � Conflicts: � Packs/Core/pack_metadata.json
Packs/Core/Playbooks/playbook-Ransomware_Enrich_and_Contain_README.md
Outdated
Show resolved
Hide resolved
Packs/Core/Playbooks/playbook-Ransomware_Enrich_and_Contain_README.md
Outdated
Show resolved
Hide resolved
Packs/Core/Playbooks/playbook-Ransomware_Enrich_and_Contain_README.md
Outdated
Show resolved
Hide resolved
Packs/Core/Playbooks/playbook-Ransomware_Enrich_and_Contain_README.md
Outdated
Show resolved
Hide resolved
@altmannyarden Doc review completed. |
Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>
Packs/Core/Playbooks/playbook-Local_Analysis_alert_Investigation.yml
Outdated
Show resolved
Hide resolved
Packs/Core/Playbooks/playbook-Possible_External_RDP_Brute-Force.yml
Outdated
Show resolved
Hide resolved
This PR was automatically updated by a GitHub Action
To stop automatic version bumps, add the |
…rovement_xsiam' into Inputs_groups_core_playbooks_improvement_xsiam
for NGFW scan playbook
for NGFW scan playbook
for block indicators v3
…that are blocked before set incident parent key. for containment plan - block indicators
This PR was automatically updated by a GitHub Action
To stop automatic version bumps, add the |
This PR was automatically updated by a GitHub Action
To stop automatic version bumps, add the |
This PR was automatically updated by a GitHub Action
To stop automatic version bumps, add the |
…rovement_xsiam' into Inputs_groups_core_playbooks_improvement_xsiam
This PR was automatically updated by a GitHub Action
To stop automatic version bumps, add the |
…s_core_playbooks_improvement_xsiam � Conflicts: � Packs/CommonPlaybooks/ReleaseNotes/2_6_2.md
…rovement_xsiam' into Inputs_groups_core_playbooks_improvement_xsiam
This PR was automatically updated by a GitHub Action
To stop automatic version bumps, add the |
Status
Related Issues
fixes: link to the issue
Description
IndicatorsToBlock
.SOCEmailAddress
is not empty before notifying the SOC via email.Must have