Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · Logic Apps · 📊
This playbook will enrich url entities in an incident and send them to Recorded Future Sandbox. The result will be written as a incident comment.
| Attribute | Value |
|---|---|
| Type | Playbook |
| Solution | Recorded Future |
| Source | View on GitHub |
This playbook uses 2 Logic App connectors / built-in actions:
| Connector / Action | Type | Connections | Actions |
|---|---|---|---|
azuresentinel |
Managed | 1 | 2 |
recordedfuturesandbo |
Managed | 1 | 3 |
azuresentinel (Managed)| Action | Method | Endpoint | Other |
|---|---|---|---|
| Entities_-_Get_URLs | post | /entities/url |
— |
| Add_comment_to_incident_(V3) | post | /Incidents/Comment |
— |
recordedfuturesandbo (Managed)| Action | Method | Endpoint | Other |
|---|---|---|---|
| Get_the_full_report | get | /samples/@{encodeURIComponent(body('Get_the_full_summary')?['id'])}/overview.json |
— |
| Submit_url_samples | post | /samples/url |
— |
| Get_the_full_summary | get | /samples/@{encodeURIComponent(body('Submit_url_samples')?['id'])} |
— |
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · Logic Apps · 📊