CYFIRMA Vulnerabilities Intelligence
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊
| Attribute | Value |
|---|---|
| Connector ID | CyfirmaVulnerabilitiesIntelDC |
| Publisher | Microsoft |
| Used in Solutions | Cyfirma Vulnerabilities Intel |
| Collection Method | CCF |
| Connector Definition Files | CyfirmaVulnerabilities_DataConnectorDefinition.json |
| CCF Configuration | CyfirmaVulnerabilitiesIntel_PollerConfig.json |
| CCF Capabilities | APIKey |
The CYFIRMA Vulnerabilities Intelligence data connector enables seamless log ingestion from the DeCYFIR API into Microsoft Sentinel. Built on the Microsoft Sentinel Codeless Connector Platform, it leverages the CYFIRMA API's to retrieve logs. Additionally, it supports DCR-based ingestion time transformations, which parse security data into a custom table during ingestion. This eliminates the need for query-time parsing, enhancing performance and efficiency.
Tables Ingested
This connector ingests data into the following tables:
| Table | Transformations | Ingestion API | Lake-Only |
|---|---|---|---|
CyfirmaVulnerabilities_CL |
? | ✓ | ? |
💡 Tip: Tables with Ingestion API support allow data ingestion via the Azure Monitor Data Collector API, which also enables custom transformations during ingestion.
Permissions
Resource Provider Permissions: - Workspace (Workspace): Read and Write permissions are required.
Setup Instructions
⚠️ Note: These instructions were automatically generated from the connector's user interface definition file using AI and may not be fully accurate. Please verify all configuration steps in the Microsoft Sentinel portal.
1. CYFIRMA Vulnerabilities Intelligence
This connector provides the Vulnerabilities logs from CYFIRMA Vulnerabilities Intelligence. The connector uses the DeCYFIR API to retrieve logs and supports DCR-based ingestion time transformations, parsing security data into a custom table during ingestion. This eliminates the need for query-time parsing, enhancing performance and efficiency. - CYFIRMA API URL: https://decyfir.cyfirma.com - CYFIRMA API Key: (password field) - API Delta: API Delta - Vendor-Associated Vulnerabilities - Product-Associated Vulnerabilities - Product with Version-Associated Vulnerabilities - Click 'Connect' to establish connection
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊