ReversingLabs-CheckQuota

Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊

This playbook will check your ReversingLabs TitaniumCloud API quota and provide usage details. To be used in conjunction with the ReversingLabs-CapabilitiesOverview workbook.

Attribute	Value
Type	Playbook
Solution	ReversingLabs
Source	View on GitHub

Tables Used

This content item queries data from the following tables:

Table	Transformations	Ingestion API	Lake-Only
`RLTiCloudQuotas_CL`	?	✓	?

Additional Documentation

📄 Source: ReversingLabs-CheckQuota/readme.md

Author: Aaron Hoffmann (ReversingLabs)

Summary

This playbook provides API quota details from the ReversingLabs TitaniumCloud API. This playbook is designed to be used with the ReversingLabs-CapabilitiesOverview workbook as part of the ReversingLabs content pack solution for Microsoft Sentinel.

Prerequisites

You'll need the following: * A ReversingLabs TitaniumCloud subscription * A ReversingLabs TitaniumCloud username * A ReversingLabs TitaniumCloud password

Deployment instructions

Deploy the playbook by clicking on "Deploy to Azure" button. This will take you to deploying an ARM Template wizard.

Post-deployment

a. Authorize connections (Perform this action if needed) Once deployment is complete, you will need to authorize each connection.

Click the Microsoft Sentinel connection resource
Click edit API connection
Click Authorize
Sign in
Click Save

Additional resources

This template deploys an Azure Key Vault in order to store credentials used by the playbook. The template will also enable a managed identity for the playbook, and assign the managed identity the Key Vault Secrets User role scoped to the deployed Key Vault.

Screenshots

Playbook overview

References

Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊

↑ Back to Playbooks · Back to ReversingLabs