⚠️ CofenseTriage
⚠️ Unpublished: This item is from a solution that is not yet published on Azure Marketplace or not installed in Content Hub.
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊
| Attribute | Value |
|---|---|
| Publisher | Cofense Support |
| Support Tier | Partner |
| Support Link | https://cofense.com/contact-support/ |
| Categories | domains |
| Version | 3.0.0 |
| Author | Cofense - support@cofense.com |
| First Published | 2023-03-24 |
| Last Updated | 2023-03-24 |
| Solution Folder | CofenseTriage |
Cofense Triage for Microsoft Sentinel.
Contents
Data Connectors
This solution provides 1 data connector(s):
🔶 CLv1: This connector ingests into a table that uses the legacy Custom Log V1 schema format with type-suffixed column names (e.g.
_s,_d,_b,_t,_g). Note: identification is based on column name suffixes which are also permitted in CLv2, so this classification may not always be accurate.
Tables Used
This solution uses 3 table(s):
| Table | Used By Connectors | Used By Content |
|---|---|---|
Cofense_Triage_failed_indicators_CL 🔶 |
Cofense Triage Threat Indicators Ingestion | - |
Report_links_data_CL 🔶 |
Cofense Triage Threat Indicators Ingestion | Workbooks |
ThreatIntelligenceIndicator |
Cofense Triage Threat Indicators Ingestion | - |
Internal Tables
The following 1 table(s) are used internally by this solution's content items:
| Table | Used By Connectors | Used By Content |
|---|---|---|
ThreatIntelIndicators |
- | Workbooks |
🔶 CLv1: This table uses the legacy Custom Log V1 schema format with type-suffixed column names (e.g.
_s,_d,_b,_t,_g). Note: identification is based on column name suffixes which are also permitted in CLv2, so this classification may not always be accurate.
Content Items
This solution includes 1 content item(s):
| Content Type | Count |
|---|---|
| Workbooks | 1 |
Workbooks
| Name | Tables Used |
|---|---|
| CofenseTriageThreatIndicators | Report_links_data_CLInternal use: ThreatIntelIndicators |
Release Notes
| Version | Date Modified (DD-MM-YYYY) | Change History |
|---|---|---|
| 3.0.0 | 20-06-2024 | Updated Data Connector to retry failed indicators. |
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊