Network-based Threat Deception for Post-Compromise Threat Detection.
Note: Support for this pack moved to the partner on Jan 24, 2022. Please contact the partner directly via the support link on the right.
Attivo Networks® provides an innovative defense for protection against identity compromise, privilege escalation, and lateral movement attacks. The company’s solutions deliver unprecedented visibility, prevention, and derailment for security exposures, attack paths, and attack escalation activities across endpoints, Active Directory, and cloud environments.
What does this pack do?
The integration commands in this content pack will allow you to:
- Pull new detection events into the XSOAR platform
- Query the Attivo platform for information on whether a given indicator relates to a deceptive or production asset
- Deploy new deceptive elements in your production environment
Note: Support for this pack moved to the partner on Jan 24, 2022. Please contact the partner directly via the support link on the right.
Attivo Networks® provides an innovative defense for protection against identity compromise, privilege escalation, and lateral movement attacks. The company’s solutions deliver unprecedented visibility, prevention, and derailment for security exposures, attack paths, and attack escalation activities across endpoints, Active Directory, and cloud environments.
What does this pack do?
The integration commands in this content pack will allow you to:
- Pull new detection events into the XSOAR platform
- Query the Attivo platform for information on whether a given indicator relates to a deceptive or production asset
- Deploy new deceptive elements in your production environment
