FireEye’s Context API aims to be the single central API for looking up threat intelligence for all major observables including, IP address, domain name, URL, file hash, email address and signature. This plug-in allows the analyst to create playbooks that lookup indicators using the Context API and use the intelligence returned by the API lookup to make decisions and perform automatic actions.
Note : For customers who have SO 6.0.0/6.1.0 can download the plugin from Content Bundle
Developer: | FireEye |
Supported By: | FireEye |
Resources: | Security Orchestrator Documentation |
Security Orchestrator |
Version: | 3.0.10 |
Requirements: | SO 6.0+ |