| Advanced ServiceNow Teams Integration Playbook |
Teams |
0 |
1 |
| AS-IAM-Entra-ID-Master-Playbook |
๐ Standalone |
0 |
2 |
| AS-IAM-Master-Playbook |
๐ Standalone |
0 |
4 |
| Block IP - F5 BIG-IP |
๐ Standalone |
0 |
2 |
| Block IP - Zscaler |
๐ Standalone |
0 |
1 |
| Block URL - F5 BIG-IP |
๐ Standalone |
0 |
2 |
| Censys Alert Enrichment |
Censys |
0 |
1 |
| Censys Alert Rescan |
Censys |
0 |
1 |
| Censys Entity Enrichment - Certificate |
Censys |
0 |
1 |
| Censys Entity Enrichment - Host |
Censys |
0 |
1 |
| Censys Entity Enrichment - Web Property |
Censys |
0 |
1 |
| Censys Incident Enrichment |
Censys |
0 |
1 |
| Censys Rescan |
Censys |
0 |
1 |
| Crowdstrike-ResponsefromTeams |
๐ Standalone |
0 |
2 |
| Cyjax Incident Enrichment |
Cyjax |
0 |
1 |
| Endpoint enrichment - Crowdstrike |
CrowdStrike Falcon Endpoint Protection |
0 |
1 |
| Enrichment IP - F5 BIG-IP |
๐ Standalone |
0 |
1 |
| Four Playbook templates - F5BigIP |
๐ Standalone |
0 |
5 |
| Get-AlertEntitiesEnrichment |
๐ GitHub Only |
0 |
1 |
| Infoblox-TIDE-Lookup-Via-Incident |
Infoblox |
0 |
4 |
| Isolate endpoint - Crowdstrike |
CrowdStrike Falcon Endpoint Protection |
0 |
1 |
| MTI Threat Actor Lookup |
๐ Standalone |
0 |
1 |
| NetApp RRS Manual IP to Volume Offline |
NetApp Ransomware Resilience |
0 |
3 |
| Query Azure Resource Graph and enrich sentinel incident |
๐ Standalone |
0 |
1 |
| RFI-search-external-user |
Recorded Future Identity |
0 |
3 |
| RFI-search-workforce-user |
Recorded Future Identity |
0 |
3 |
| Rubrik Anomaly Analysis |
RubrikSecurityCloud |
0 |
2 |
| Rubrik Anomaly Generate Downloadable Link |
RubrikSecurityCloud |
0 |
1 |
| Rubrik Anomaly Incident Response |
RubrikSecurityCloud |
0 |
6 |
| Rubrik Fileset Ransomware Discovery |
RubrikSecurityCloud |
0 |
1 |
| Rubrik Ransomware Discovery and File Recovery |
RubrikSecurityCloud |
0 |
3 |
| Rubrik Ransomware Discovery and VM Recovery |
RubrikSecurityCloud |
0 |
3 |
| Rubrik Update Anomaly Status Via Incident |
RubrikSecurityCloud |
0 |
1 |
| Rubrik User Intelligence Analysis |
RubrikSecurityCloud |
0 |
2 |
| Team Cymru Scout Live Investigation |
Team Cymru Scout |
0 |
2 |
| Vectra Add Note To Entity |
Vectra XDR |
0 |
2 |
| Vectra Add Tag To Entity |
Vectra XDR |
0 |
2 |
| Vectra Add Tag To Entity All Detections |
Vectra XDR |
0 |
3 |
| Vectra Add Tag To Entity Selected Detections |
Vectra XDR |
0 |
3 |
| Vectra Assign Dynamic User To Entity |
Vectra XDR |
0 |
5 |
| Vectra Assign Static User To Entity |
Vectra XDR |
0 |
4 |
| Vectra Close Detections |
Vectra XDR |
0 |
3 |
| Vectra Decorate Incident Based On Tag |
Vectra XDR |
0 |
1 |
| Vectra Decorate Incident Based On Tags And Notify |
Vectra XDR |
0 |
1 |
| Vectra Download Pcap File To Storage |
Vectra XDR |
0 |
2 |
| Vectra Dynamic Assign Member To Group |
Vectra XDR |
0 |
2 |
| Vectra Dynamic Resolve Assignment |
Vectra XDR |
0 |
5 |
| Vectra Mark Detections As Fixed |
Vectra XDR |
0 |
3 |
| Vectra Open Closed Detections |
Vectra XDR |
0 |
2 |
| Vectra Operate On Entity Source IP |
Vectra XDR |
0 |
1 |
| Vectra Static Assign Member To Group |
Vectra XDR |
0 |
1 |
| Vectra Static Resolve Assignment |
Vectra XDR |
0 |
4 |
| Vectra Update Incident Based on Tag And Notify |
Vectra XDR |
0 |
2 |
| Zscaler OAuth2 Blacklist URL |
Zscaler Internet Access |
0 |
1 |
| Zscaler OAuth2 Block IP |
Zscaler Internet Access |
0 |
1 |
| Zscaler OAuth2 Block URL |
Zscaler Internet Access |
0 |
1 |
| Zscaler OAuth2 Lookup IP |
Zscaler Internet Access |
0 |
1 |
| Zscaler OAuth2 Lookup URL |
Zscaler Internet Access |
0 |
1 |
| Zscaler OAuth2 Unblock IP |
Zscaler Internet Access |
0 |
1 |
| Zscaler OAuth2 Unblock URL |
Zscaler Internet Access |
0 |
1 |
| Zscaler URL category lookup |
๐ Standalone |
0 |
1 |
| Zscaler-Oauth2-UnblacklistURL |
Zscaler Internet Access |
0 |
1 |
| Zscaler-Oauth2-WhitelistURL |
Zscaler Internet Access |
0 |
1 |