Maps FireEye NX IPS alerts.
FireEye Common Fields
- Details
- Content
- Dependencies
- Version History
FireEye common fields concentrates all of the mutual content entities for the FireEye integrations.
Classifiers
| Name | Description |
|---|---|
FireEye NX IPS Alert - Incoming Mapper v2 | |
FireEye NX Alert - Incoming Mapper v2 | Maps FireEye NX alerts. |
FireEye EX - Incoming Mapper | Maps FireEye EX alerts. |
Incident Fields
| Name | Description |
|---|---|
FireEye Email Queue ID | |
FireEye Malware Information | |
FireEye C2 Host | |
FireEye Download At | |
FireEye Signature ID | |
FireEye Matched Time | |
FireEye C2 Address | |
FireEye C2 Protocol | |
FireEye Infection ID | |
FireEye Alert Vlan | |
FireEye C2 Port | |
FireEye Submitted At | |
FireEye Malware Info | |
FireEye Signature | |
FireEye Alert Infection ID | |
FireEye Email Source Domain | |
FireEye C2 Channel | |
FireEye Match Count | |
FireEye Signature Revision | |
FireEye Alert Malicious | |
FireEye Infection URL | |
FireEye Domain Name |
Classifiers
| Name | Description |
|---|---|
FireEye EX - Incoming Mapper | Maps FireEye EX alerts. |
FireEye NX Alert - Incoming Mapper v2 | Maps FireEye NX alerts. |
FireEye NX IPS Alert - Incoming Mapper v2 | Maps FireEye NX IPS alerts. |
Incident Fields
| Name | Description |
|---|---|
FireEye Submitted At | |
FireEye Signature Revision | |
FireEye Infection URL | |
FireEye C2 Host | |
FireEye Matched Time | |
FireEye Malware Info | |
FireEye Email Queue ID | |
FireEye Infection ID | |
FireEye Alert Malicious | |
FireEye Malware Information | |
FireEye C2 Channel | |
FireEye Alert Vlan | |
FireEye Alert Infection ID | |
FireEye Signature ID | |
FireEye Match Count | |
FireEye Download At | |
FireEye Email Source Domain | |
FireEye C2 Address |
Required Content Packs (1)
| Pack Name | Pack By |
|---|---|
| Base | By: Cortex XSOAR |
Optional Content Packs (7)
| Pack Name | Pack By |
|---|---|
| Common Types | By: Cortex XSOAR |
| FireEye Email Security (EX) | By: Cortex XSOAR |
| FireEye HX | By: Cortex XSOAR |
| FireEye Network Security (NX) | By: Cortex XSOAR |
| Malware Core | By: Cortex XSOAR |
| Phishing | By: Cortex XSOAR |
| PhishingAlerts | By: Cortex XSOAR |
All level dependencies (2)
| Pack Name | Pack By |
|---|---|
| Base | By: Cortex XSOAR |
| Aggregated Scripts | By: Cortex XSOAR |
1.0.4 - 2355875 (February 3, 2022)
Incident Fields
- FireEye C2 Protocol
- FireEye Domain Name
1.0.3 - 2353377 (February 3, 2022)
Incident Fields
- FireEye Signature
PUBLISHER
PLATFORMS
Cortex XSOARCortex XSIAM
INFO
| Certification | Certified | Read more |
| Supported By | Cortex | |
| Created | June 11, 2021 | |
| Last Release | March 22, 2026 |
WORKS WITH THE FOLLOWING INTEGRATIONS:
