Skip to main content

Cloud-IDS

Download With Dependencies

Google Cloud IDS, a next-generation advanced intrusion detection service that provides threat detection for intrusions, malware, spyware and command-and-control attacks.

CloudIDS

Google Cloud IDS is a next-generation advanced intrusion detection service that provides threat detection for intrusions, malware, spyware, and command-and-control attacks.

What does this pack do?

Playbook

  • Cloud_IDS-IP_Blacklist-GCP_Firewall_Extract: Gets the attacker's IP address from Cloud IDS through Google Pub/Sub.
    Cloud_IDS-IP_Blacklist-GCP_Firewall_Append will update the ip list so GCP automatically blocks the IP address.

Flow Chart of Playbook

CloudIDS

Google Cloud IDS is a next-generation advanced intrusion detection service that provides threat detection for intrusions, malware, spyware, and command-and-control attacks.

What does this pack do?

Playbook

  • Cloud_IDS-IP_Blacklist-GCP_Firewall_Extract: Gets the attacker's IP address from Cloud IDS through Google Pub/Sub.
    Cloud_IDS-IP_Blacklist-GCP_Firewall_Append will update the ip list so GCP automatically blocks the IP address.

Flow Chart of Playbook

PUBLISHER

Cortex

PLATFORMS

Cortex XSOARCortex XSIAM

INFO

Supported ByCommunity
CreatedSeptember 25, 2021
Last ReleaseSeptember 25, 2021
WORKS WITH THE FOLLOWING INTEGRATIONS:
DISCLAIMER
Content packs are licensed by the Publisher identified above and subject to the Publisher’s own licensing terms. Palo Alto Networks is not liable for and does not warrant or support any content pack produced by a third-party Publisher, whether or not such packs are designated as “Palo Alto Networks-certified” or otherwise. For more information, see the Marketplace documentation.