Details
Content
Dependencies
Version History

Google Cloud IDS, a next-generation advanced intrusion detection service that provides threat detection for intrusions, malware, spyware and command-and-control attacks.

CloudIDS

Google Cloud IDS is a next-generation advanced intrusion detection service that provides threat detection for intrusions, malware, spyware, and command-and-control attacks.

What does this pack do?

Playbook

Cloud_IDS-IP_Blacklist-GCP_Firewall_Extract: Gets the attacker's IP address from Cloud IDS through Google Pub/Sub.
Cloud_IDS-IP_Blacklist-GCP_Firewall_Append will update the ip list so GCP automatically blocks the IP address.

Flow Chart of Playbook

Cloud_IDS-IP_Blacklist-GCP_Firewall

CloudIDS

Google Cloud IDS is a next-generation advanced intrusion detection service that provides threat detection for intrusions, malware, spyware, and command-and-control attacks.

What does this pack do?

Playbook

Cloud_IDS-IP_Blacklist-GCP_Firewall_Extract: Gets the attacker's IP address from Cloud IDS through Google Pub/Sub.
Cloud_IDS-IP_Blacklist-GCP_Firewall_Append will update the ip list so GCP automatically blocks the IP address.

Flow Chart of Playbook

Cloud_IDS-IP_Blacklist-GCP_Firewall

Incident Types

Name	Description
google cloud IDS

Playbooks

Name	Description
Cloud IDS-IP Blacklist-GCP Firewall_Append	Set a list of IP addresses in GCP firewall.
Cloud IDS-IP Blacklist-GCP Firewall_Extract	Get Source IP
Cloud IDS-IP Blacklist-GCP Firewall_Combine	Set a list of IP addresses in GCP firewall.

Incident Types

Name	Description
google cloud IDS

Playbooks

Name	Description
Cloud IDS-IP Blacklist-GCP Firewall_Append	Set a list of IP addresses in GCP firewall.
Cloud IDS-IP Blacklist-GCP Firewall_Combine	Set a list of IP addresses in GCP firewall.
Cloud IDS-IP Blacklist-GCP Firewall_Extract	Get Source IP

Required Content Packs (3)

Pack Name	Pack By
Base	By: Cortex XSOAR
Common Scripts	By: Cortex XSOAR
Google Cloud Compute	By: Cortex XSOAR

Optional Content Packs (0)

Pack Name	Pack By

All level dependencies (5)

Pack Name	Pack By
Google Cloud Compute	By: Cortex XSOAR
Aggregated Scripts	By: Cortex XSOAR
Base	By: Cortex XSOAR
Cortex REST API	By: Cortex XSOAR
Common Scripts	By: Cortex XSOAR

PLATFORMS

Cortex XSOARCortex XSIAM

INFO

Supported By	Community
Created	September 25, 2021
Last Release	March 23, 2026

WORKS WITH THE FOLLOWING INTEGRATIONS:

DISCLAIMER

By downloading or using Marketplace content, you agree to the applicable Terms of Use and End User License Agreement. Third-party content is provided by its publisher, and Palo Alto Networks does not warrant, endorse, support, or assume responsibility for content not expressly identified as owned by Palo Alto Networks.

Cloud-IDS

CloudIDS

What does this pack do?

Playbook

Flow Chart of Playbook

CloudIDS

What does this pack do?

Playbook

Flow Chart of Playbook

PLATFORMS

INFO

WORKS WITH THE FOLLOWING INTEGRATIONS:

DISCLAIMER