Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · Logic Apps · 📊
Polls the Cyren CCF threat intelligence feed and pushes STIX indicators to Microsoft Sentinel via the createIndicator API.
| Attribute | Value |
|---|---|
| Type | Playbook |
| Solution | Cyren-Defender-ThreatIntelligence |
| Source | View on GitHub |
This playbook uses 1 Logic App connector / built-in action:
| Connector / Action | Type | Connections | Actions |
|---|---|---|---|
http |
Built-in | 0 | 2 |
http (Built-in)| Action | Method | Endpoint | Other |
|---|---|---|---|
| Get_Cyren_Indicators | GET | @{outputs('Build_Cyren_Api_Url')} |
— |
| Post_Indicator_to_Sentinel | POST | @{concat(parameters('ManagementBaseUrl'), substring(parameters('WorkspaceResourceId'), 1), '/providers/Microsoft.SecurityInsights/threatIntelligence/main/createIndicator?api-version=2024-03-01')} |
— |
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · Logic Apps · 📊
↑ Back to Playbooks · Back to Cyren-Defender-ThreatIntelligence