Maps incoming AWS indicator fields.
AWS Feed
- Details
- Content
- Dependencies
- Version History
Indicators feed from AWS
Classifiers
| Name | Description |
|---|---|
AWS Feed - Incoming Mapper | |
AWS Feed - Classifier | Classifies AWS IOCs. |
Integrations
| Name | Description |
|---|---|
| AWS Feed | Use the AWS feed integration to fetch indicators from the feed. |
Playbooks
| Name | Description |
|---|---|
| TIM - Process AWS indicators | This playbook handles the tagging of AWS indicators. Specify the tag to apply to these indicators in the playbook inputs. An example tag will be approved_white. If no inputs are specified, the indicators will be tagged for manual review. The user can specify whether a manual review incident is required. |
Classifiers
| Name | Description |
|---|---|
AWS Feed - Incoming Mapper | Maps incoming AWS indicator fields. |
AWS Feed - Classifier | Classifies AWS IOCs. |
Integrations
| Name | Description |
|---|---|
| AWS Feed | Use the AWS feed integration to fetch indicators from the feed. |
Playbooks
| Name | Description |
|---|---|
| TIM - Process AWS indicators | This playbook handles the tagging of AWS indicators. Specify the tag to apply to these indicators in the playbook inputs. An example tag will be approved_white. If no inputs are specified, the indicators will be tagged for manual review. The user can specify whether a manual review alert is required. |
Required Content Packs (1)
| Pack Name | Pack By |
|---|---|
| Base | By: Cortex XSOAR |
Optional Content Packs (1)
| Pack Name | Pack By |
|---|---|
| Common Types | By: Cortex XSOAR |
All level dependencies (0)
| Pack Name | Pack By |
|---|
1.1.27 - R4646022 (February 19, 2023)
1.1.12 - 2198753 (January 3, 2022)
Integrations
AWS Feed
- Reverted changes made in 1.1.11.
- Fixed an issue where adding the headers If-None-Match and If-Modified-Since to requests was not compatible with Cortex XSOAR with a version below 6.5.0.
1.1.11 - R2146019 (December 21, 2021)
Integrations
AWS Feed
- Changed the feed to be Incremental Feed.
1.1.10 - 1938694 (November 12, 2021)
Integrations
AWS Feed
- Fixed an issue where configuring the integration to fetch multiple Services would only fetch the first service.
1.1.9 - 1882648 (November 2, 2021)
Integrations
AWS Feed
Enhanced noUpdate flagging when fetching indicators using ETAG and Last-Modified headers.
1.1.8 - 7681620 (September 19, 2021)
Integrations
AWS Feed
- Updated the Docker image to: demisto/jmespath:1.0.0.23980.
1.1.7 - 415742 (August 24, 2021)
Integrations
AWS Feed
Fixed an issue where fetching indicators in Cortex XSOAR with a version below 6.5.0 would fail.
1.1.6 - 411893 (August 16, 2021)
Integrations
AWS Feed
Read ETAG and Last-Modified headers from feed response to support noUpdate signaling when creating indicators.
1.1.5 - 411157 (August 13, 2021)
Integrations
AWS Feed
- Added more regions to the Regions parameter.
1.1.4 - 382285 (June 9, 2021)
Integrations
AWS Feed
- Internal infrastructure improvements.
1.1.3 - 346806 (May 5, 2021)
Integrations
AWS Feed
- Internal code improvements.
1.1.2 - 334630 (April 24, 2021)
Integrations
AWS Feed
- Internal code improvements.
- Updated Docker image to demisto/jmespath:1.0.0.19143.
1.1.1 - R264879 (January 27, 2021)
Integrations
AWS Feed
- Internal code improvements.
1.1.0 - R261222 (January 25, 2021)
Integrations
- ##### AWS Feed
- Internal code improvements.
1.0.6 - R180529 (November 9, 2020)
Classifiers
AWS Feed - Classifier
- Fixed an issue where the classifier's id was incorrect.
AWS Feed - Incoming Mapper
- Fixed an issue where the mapper's id was incorrect.
Integration
AWS Feed
- Upgraded the Docker image to demisto/jmespath:1.0.0.12410.
PUBLISHER
PLATFORMS
Cortex XSOARCortex XSIAM
INFO
| Certification | Certified | Read more |
| Supported By | Cortex | |
| Created | July 26, 2020 | |
| Last Release | May 18, 2023 |
WORKS WITH THE FOLLOWING INTEGRATIONS:
