Skip to main content

Accenture CTI v2

Download With Dependencies

Accenture CTI provides intelligence regarding security threats and vulnerabilities.

Accenture Security

Accenture CTI v2

This pack has 2 sub-pack/integration namely:

  • ACTI Indicator Query
  • ACTI Vulnerability Query

This pack automates the detection of threats and the triage/investigation of incidents by importing Accenture CTI (ACTI) data and intelligence reports into the XSOAR platform. The incident-enrichment functionality not only alleviates tedious research tasks traditionally performed by analysts, but also automatically folds ACTI intelligence reports associated with a given incident into the incident. The result is a complete picture of what ACTI knows about any given threat the moment the analyst opens the XSOAR incident.

What to expect from the Accenture Cyber Threat Intelligence (Accenture CTI v2) pack?

  • A playbook that automatically queries Accenture's IntelGraph API to pull context for IOC and associated intelligence reports into XSOAR incidents.
  • Reputation Commands to query for network-level indicators (IP, Domain, and URL).
  • Command to query for ACTI intelligence reports.
  • Command to query ACTI Vulnerability database.
  • The pack also includes a playbook which helps to enrich indicators present in incident with related ACTI Intelligence Alert, ACTI Intelligence Report, ACTI Malware Family, ACTI Threat Actor, ACTI Threat Campaign, ACTI Threat Group if present in Accenture IntelGraph.

Accenture Security

Accenture CTI v2

This pack has 2 sub-pack/integration namely:

  • ACTI Indicator Query
  • ACTI Vulnerability Query

This pack automates the detection of threats and the triage/investigation of incidents by importing Accenture CTI (ACTI) data and intelligence reports into the XSOAR platform. The incident-enrichment functionality not only alleviates tedious research tasks traditionally performed by analysts, but also automatically folds ACTI intelligence reports associated with a given incident into the incident. The result is a complete picture of what ACTI knows about any given threat the moment the analyst opens the XSOAR incident.

What to expect from the Accenture Cyber Threat Intelligence (Accenture CTI v2) pack?

  • A playbook that automatically queries Accenture's IntelGraph API to pull context for IOC and associated intelligence reports into XSOAR incidents.
  • Reputation Commands to query for network-level indicators (IP, Domain, and URL).
  • Command to query for ACTI intelligence reports.
  • Command to query ACTI Vulnerability database.
  • The pack also includes a playbook which helps to enrich indicators present in incident with related ACTI Intelligence Alert, ACTI Intelligence Report, ACTI Malware Family, ACTI Threat Actor, ACTI Threat Campaign, ACTI Threat Group if present in Accenture IntelGraph.

PUBLISHER

PLATFORMS

Cortex XSOARCortex XSIAM

INFO

CertificationRead more
Supported ByPartner
CreatedJanuary 17, 2022
Last ReleaseNovember 20, 2024
WORKS WITH THE FOLLOWING INTEGRATIONS:
DISCLAIMER
Content packs are licensed by the Publisher identified above and subject to the Publisher’s own licensing terms. Palo Alto Networks is not liable for and does not warrant or support any content pack produced by a third-party Publisher, whether or not such packs are designated as “Palo Alto Networks-certified” or otherwise. For more information, see the Marketplace documentation.