EclecticIQ (Preview)
Solution: EclecticIQ
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊
| Attribute | Value |
|---|---|
| Publisher | Microsoft Corporation |
| Support Tier | Microsoft |
| Support Link | https://support.microsoft.com |
| Categories | domains |
| Version | 2.0.0 |
| Author | Microsoft - support@microsoft.com |
| First Published | 2022-09-30 |
| Solution Folder | EclecticIQ |
| Marketplace | Azure Marketplace · Popularity: ⚪ Very Low (0%) |
EclecticIQ is a global provider of threat intelligence, hunting and response technology and services. This solution includes SOAR Connector and Playbooks which leverage EclecticIQ Observables data to not only enrich Microsoft Sentinel incidents but also add indicators to EclecticIQ.
Data Connectors
This solution does not include data connectors.
This solution may contain other components such as analytics rules, workbooks, hunting queries, or playbooks.
Content Items
This solution includes 2 content item(s):
| Content Type | Count |
|---|---|
| Playbooks | 2 |
Playbooks
| Name | Description | Tables Used |
|---|---|---|
| Create Observable - EclecticIQ | This playbook adds new observable in EclecticIQ based on the entities info present in Sentinel incid... | - |
| Enrich Incident - EclecticIQ | This playbook perform look up into EclecticIQ for the entities (Account, Host, IP, FileHash, URL) pr... | - |
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊