CylancePROTECT is an integrated threat prevention solution that combines the
power of artificial intelligence (AI) to block malware infections.
Cylance Protect
- Details
- Content
- Dependencies
- Version History
Manage Endpoints using Cylance protect
Integrations
| Name | Description |
|---|---|
| Cylance Protect v2 | Manage Endpoints using Cylance protect |
Playbooks
| Name | Description |
|---|---|
| Get File Sample By Hash - Cylance Protect | Deprecated. Use "Get File Sample By Hash - Cylance Protect v2" playbook instead. |
| Endpoint Enrichment - Cylance Protect v2 | Enriches endpoints using the Cylance Protect v2 integration. |
| Get File Sample By Hash - Cylance Protect v2 | This playbook returns a file sample to the War Room given the file's SHA256 hash, using Cylance Protect v2 integration. |
| Block File - Cylance Protect v2 | This playbook accepts a SHA256 hash and adds the hash to the Global Quarantine list using the Cylance Protect v2 integration. |
Integrations
| Name | Description |
|---|---|
| Cylance Protect v2 | Manage Endpoints using Cylance protect |
Playbooks
| Name | Description |
|---|---|
| Endpoint Enrichment - Cylance Protect v2 | Enriches endpoints using the Cylance Protect v2 integration. |
| Get File Sample By Hash - Cylance Protect v2 | This playbook returns a file sample to the War Room given the file's SHA256 hash, using Cylance Protect v2 integration. |
| Block File - Cylance Protect v2 | This playbook accepts a SHA256 hash and adds the hash to the Global Quarantine list using the Cylance Protect v2 integration. |
Required Content Packs (2)
| Pack Name | Pack By |
|---|---|
| Common Scripts | By: Cortex XSOAR |
| Base | By: Cortex XSOAR |
Optional Content Packs (0)
| Pack Name | Pack By |
|---|
All level dependencies (6)
| Pack Name | Pack By |
|---|---|
| Google Maps | By: Cortex XSOAR |
| Active Directory Query | By: Cortex XSOAR |
| Slack | By: Cortex XSOAR |
| Remote Access | By: Cortex XSOAR |
| MITRE ATT&CK | By: Cortex XSOAR |
| Common Scripts | By: Cortex XSOAR |
1.1.0 - 2988482 (May 26, 2022)
Integrations
Cylance Protect v2
- New Commands
Added support for Optics API with 3 new commands:
- cylance-optics-create-instaquery.
- cylance-optics-get-instaquery-result.
- cylance-optics-list-instaquery.
- Added the full context and raw_response result for cylance-protect-get-policy-details.
1.0.9 - 2371508 (February 7, 2022)
Integrations
Cylance Protect v2
- Fixed an issue where multiple indicators returned DBotScore objects simultaneously.
PUBLISHER
Cortex
PLATFORMS
Cortex XSOARCortex XSIAM
INFO
| Certification | Certified | Read more |
| Supported By | Cortex | |
| Created | September 23, 2020 | |
| Last Release | January 29, 2023 |
WORKS WITH THE FOLLOWING INTEGRATIONS:
