Risk Notable Enrich

Description

This playbook collects the available Indicator data types within the event as well as available investigative playbooks. It will launch any playbooks that meet the filtered criteria.

Type: Investigation
Product: Splunk SOAR
Apps: None
Last Updated: 2021-10-22
Author: Kelby Shelton, Splunk
ID: rn0edc96-ff2b-48b0-9f6f-43da3783fd63

Associated Detections

How To Implement

tbd

Explore Playbook

Required field

Reference

https://docs.splunk.com/Documentation/ESSOC/latest/user/Useplaybookpack#Call_child_playbooks_with_the_dynamic_playbook_system

source | version: 1

Twitter Facebook LinkedIn

Risk Notable Enrich

Description

Associated Detections

How To Implement

Explore Playbook

Required field

Reference

You May Also Enjoy

Windows Proxy Via Netsh

Windows Ldifde Directory Object Behavior

Windows Proxy Via Registry

Network Share Discovery Via Dir Command