Demisto Content 17.12.3 release
Demisto Content Release Notes for version 17 ❅ 12 ❅ 3 (5348)
❅❅❅ Published at 24 December 2017 ❅❅❅
Playbooks
4 New Playbooks
- Calculate Severity - Generic
-- Calculate incident severity by indicators reputation and user/endpoint membership in critical groups - Get File Sample From Hash - Carbon Black Enterprise Response
-- Returns to the war-room a file sample correlating to MD5 hashes in the context using Carbon Black Enterprise Response integration - Get File Sample From Hash - Cylance Protect
-- Returns to the war-room a file sample correlating to SHA256 hashes in the context using Cylance Protect integration - Get File Sample From Hash - Generic
-- Returns to the war-room a file sample correlating from a hash using one or more products
Integrations
2 New Integrations
- Symantec MSS
-- Symantec Managed Security Services - OPSWAT-Metadefender
-- Metadefender multi-scanning engine that uses 30+ anti-malware engines to scan files for threats
7 Improved Integrations
- GRR
-- Fixed parsing of paths for grr_get_files - EWS
-- Added move-item command. Ability to fetch incidents with folder ID - Okta
-- Added okta-unlock-user command - Phishme Intelligence
-- Added Threat IDs and last published date to output - QRadar
-- Added support for offense notes - Vmray
-- Can now use upload_sample command with war-room file - VirusTotal
-- Handling missing ASN scenario
Scripts
2 New Scripts
- LanguageDetect
-- Language detection based on Google's language-detection - SendMessageToOnlineUsers
-- Send message to Demisto online users over Email, Slack or both
Improved Scripts
- EmailAskUserResponse
-- Ignore multi-line scripts and style sections in email body
❅ ❅ ❅ ❅ ❅
❅ ❅ ❅ ❅
❅ ❅ ❅ ❅ ❅ ❅