Ingests indicators from Recorded Future feeds into Demisto.
Recorded Future Feed
- Details
- Content
- Dependencies
- Version History
Ingests indicators from Recorded Future feeds into Demisto.
Integrations
| Name | Description |
|---|---|
| Recorded Future RiskList Feed |
Indicator Fields
| Name | Description |
|---|---|
Recorded Future Evidence Details | Evidence details JSON returned from Recorded Future |
Integrations
| Name | Description |
|---|---|
| Recorded Future RiskList Feed | Ingests indicators from Recorded Future feeds into Demisto. |
Indicator Fields
| Name | Description |
|---|---|
Recorded Future Evidence Details | Evidence details JSON returned from Recorded Future |
Required Content Packs (4)
| Pack Name | Pack By |
|---|---|
| Base | By: Cortex XSOAR |
| CommonTypes | By: Cortex XSOAR |
| DemistoRESTAPI | By: Cortex XSOAR |
| CommonScripts | By: Cortex XSOAR |
Optional Content Packs (0)
| Pack Name | Pack By |
|---|
1.0.26 - 2836953 (April 28, 2022)
Integrations
Recorded Future RiskList Feed
- Updated formatting of integration parameters.
1.0.25 - 2689877 (April 2, 2022)
Integrations
Recorded Future RiskList Feed
- Fixed an issue where the Traffic Light Protocol Color integration parameter was not handled properly.
1.0.24 - 2674843 (March 30, 2022)
Integrations
Recorded Future RiskList Feed
- Added type validations and other internal code improvements.
- Fixed an issue where the test-module failed when Malicious Threshold or IOC Risk Score Threshold were empty.
- Updated the Docker image to: demisto/python3:3.10.4.27798.
1.0.22 - 2507216 (March 3, 2022)
Integrations
Recorded Future RiskList Feed
- Updated the Docker image to: demisto/python3:3.10.1.26972.
1.0.21 - 2367474 (February 6, 2022)
Integrations
Recorded Future RiskList Feed
- Added the CVE(vulnerability) type to the Indicator Type parameter.
- Added the IOC Risk Score Threshold parameter which will be used to filter out the ingested indicators, and only indicators with equivalent and higher risk score will be ingested into XSOAR.
- Added the vulnerability type to the indicator_type argument in rf-feed-get-risk-rules command.
- Added the vulnerability type to the indicator_type argument in rf-feed-get-indicators command.
1.0.20 - 2343672 (February 1, 2022)
Integrations
Recorded Future RiskList Feed
- Updated the Docker image to: demisto/python3:3.10.1.25933.
1.0.19 - 2258554 (January 15, 2022)
Integrations
Recorded Future RiskList Feed
- Improved implementation for reading the fetch-indicators command outputs to reduce the fetch runtime.
1.0.18 - 2201332 (January 4, 2022)
Integrations
Recorded Future RiskList Feed
- Updated the Docker image to: demisto/python3:3.9.9.25564.
1.0.17 - R2146019 (December 21, 2021)
Integrations
Recorded Future RiskList Feed
- Added the option to set a comma-separated list of risk rules as the value of the Risk Rule integration parameter.
1.0.16 - 1959372 (November 16, 2021)
Integrations
Recorded Future RiskList Feed
- Updated the Docker image to: demisto/python3:3.9.8.24399.
1.0.15 - 7640590 (September 16, 2021)
Integrations
Recorded Future RiskList Feed
- Maintenance and stability enhancements.
1.0.14 - 7567740 (September 12, 2021)
Integrations
Recorded Future RiskList Feed
- Updated the Docker image to: demisto/python3:3.9.7.24076.
- Fixed an issue where fetching indicators resulted in many timeline changes due to duplicate fetching.
1.0.13 - 7423160 (September 2, 2021)
Integrations
Recorded Future RiskList Feed
- Updated the Docker image to: demisto/python3:3.9.6.24019.
1.0.12 - 401343 (July 22, 2021)
Integrations
Recorded Future RiskList Feed
- Fixed an issue where the integration failed due to a docker memory error.
- Upgraded the Docker image to: demisto/python3:3.9.6.22912.
1.0.11 - 388541 (June 22, 2021)
Integrations
Recorded Future RiskList Feed
- Upgraded the Docker image to: demisto/python3:3.9.5.21272.
1.0.10 - 379915 (June 7, 2021)
Integrations
Recorded Future RiskList Feed
- Upgraded the Docker image to: demisto/python3:3.9.5.20958.
1.0.9 - 363133 (May 23, 2021)
Integrations
Recorded Future RiskList Feed
- Fixed an issue where the fetch-indicators command would not fetch all the indicators.
- Updated the Docker image to: demisto/python3:3.9.5.20070.
1.0.8 - 306754 (March 17, 2021)
Integrations
Recorded Future RiskList Feed
- Fixed an issue where fetch-indicators would fail when the received indicator was missing the EvidenceDetails value.
- Updated the Docker image to: demisto/python3:3.9.2.17246.
1.0.7 - 295871 (March 4, 2021)
Integrations
Recorded Future RiskList Feed
- Reduced memory consumption during feed download.
- Enhanced download speed by downloading a compressed feed file.
- Updated the Docker image to: demisto/python3:3.9.1.15759.
1.0.6 - R264879 (December 14, 2020)
Indicator Fields
- Recorded Future Evidence Details - Updated the entity to conform to the new schema standards.
1.0.5 - R180529 (November 9, 2020)
Indicator Fields
- Recorded Future Evidence Details - Added the MitigationString, Criticality, Name as the grid headers.
Integrations
Recorded Future RiskList Feed
- Fixed an issue where duplicated indicators were created in Cortex XSOAR.
- Updated the Docker image to: demisto/python3:3.8.6.12176.
1.0.4 - R124496 (September 23, 2020)
Integrations
Recorded Future RiskList Feed
- Added the Traffic Light Protocol integration parameter.
- Updated docker image to the latest version.
1.0.3 - 82382 (August 5, 2020)
Integrations
Recorded Future RiskList Feed
- Set the feed to fetch indicators by default upon creating an instance.
1.0.2 - 61048 (July 5, 2020)
Integrations
Recorded Future RiskList Feed
Added the Tags parameter.
PUBLISHER
Cortex
PLATFORMS
Cortex XSOARCortex XSIAM
INFO
| Certification | Certified | Read more |
| Supported By | Cortex | |
| Created | July 5, 2020 | |
| Last Release | July 4, 2022 |
WORKS WITH THE FOLLOWING INTEGRATIONS:
