![]() ![]() The following automated operations can be included in playbooks and you can also use the annotations to access operations from FortiSOAR™ release 4.10. Users can subscribe to a Pulse, an analysis of a specific threat, including data on IoC, impact, and the targeted software. Specifies whether the SSL certificate for the server is to be verified or not. In FortiSOAR™, on the Connectors page, select the AlienVault-OTX connector and click Configure to configure the following parameters:Īddress of the AlienVault-OTX server to which you will connect and perform the automated operations.ĪPI key configured for your account to access the AlienVault-OTX server. To access the FortiSOAR™ UI, ensure that port 443 is open through the firewall for the FortiSOAR™ instance.įor the procedure to configure a connector, click here.You must have the URL of the AlienVault-OTX server to which you will connect and perform the automated operations and the API key to access that server.Prerequisites to configuring the connector Additional IOCs can be created or incorporated into existing pulses when. Yum install cyops-connector-alienvault-otxįor the detailed procedure to install a connector, click here. Pulses for OTX can be created by dropping data threat reports or blog posts onto the OTX platform using pulse wizard. Therefore, you must set up your FortiSOAR™ repository and use the yum command to install connectors: Add the AlienVault-OTX connector as a step in FortiSOAR™ playbooks and perform automated operations, such as retrieving details for an indicator, creating and retrieving details for a pulse, and running queries on the AlienVault-OTX server.Ĭompatibility with FortiSOAR™ Versions: 4.10.0 and laterĪll connectors provided by FortiSOAR™ are delivered using a FortiSOAR™ repository. This document provides information about the AlienVault-OTX connector, which facilitates automated interactions, with an AlienVault-OTX server using FortiSOAR™ playbooks. It contributes “pulses” and each pulse contains a collection of IOCs targeted at a particular area. It is an open source of Indicators of Compromise (IOCs) supported by the community. AlienVault OTX v1.0.0 | FortiSOAR 1.0.0 | Fortinet Document LibraryĪlienVault Open Threat Exchange (OTX) is among our most useful threat intelligence tools. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |