Skip to main content

Carbon Black Enterprise Response

Download With Dependencies

Query and respond with Carbon Black endpoint detection and response.

This response and threat hunting pack provides you with endpoint data enabling you to investigate and analyze potential threats in real time.

What does this pack do?

  • Hunts for malicious indicators.
  • Investigates and analyzes potential malware and threats.
  • Remediates/removes unauthorized, malicious, or unwanted processes.
  • Gets alerts about suspected processes running on an endpoint.
  • Investigates processes and related files with potential malware or threats.

This pack includes several automations and playbooks to help with the malware investigations.

This response and threat hunting pack provides you with endpoint data enabling you to investigate and analyze potential threats in real time.

What does this pack do?

  • Hunts for malicious indicators.
  • Investigates and analyzes potential malware and threats.
  • Remediates/removes unauthorized, malicious, or unwanted processes.
  • Gets alerts about suspected processes running on an endpoint.
  • Investigates processes and related files with potential malware or threats.

This pack includes several automations and playbooks to help with the malware investigations.

PUBLISHER

Cortex

PLATFORMS

Cortex XSOARCortex XSIAM

INFO

CertificationRead more
Supported ByCortex
CreatedSeptember 23, 2020
Last ReleaseMarch 17, 2024
WORKS WITH THE FOLLOWING INTEGRATIONS:

DISCLAIMER
Content packs are licensed by the Publisher identified above and subject to the Publisher’s own licensing terms. Palo Alto Networks is not liable for and does not warrant or support any content pack produced by a third-party Publisher, whether or not such packs are designated as “Palo Alto Networks-certified” or otherwise. For more information, see the Marketplace documentation.