FireEye Email Security (EX)

Details
Content
Dependencies
Version History

FireEye Email Security series protects against breaches caused by advanced email attacks.

Classifiers

Name	Description
FireEye Email Security - Classifier	Classifies FireEye Email Security Alerts.
FireEye Email Security - Phishing Alerts - Classifier	Classifies FireEye Email Security Alerts as Phishing Alerts incident type.

Incident Types

Name	Description
FireEye EX Alert

Integrations

Name	Description
FireEye Email Security	FireEye Email Security (EX) series protects against breaches caused by advanced email attacks.

Playbooks

Name	Description
Block Domain - FireEye Email Security	This playbook blocks domains using FireEye Email Security. The playbook checks whether the FireEye Email Security integration is enabled, whether the Domain input has been provided and if so, blocks the domain.
Get Email From Email Gateway - FireEye	This playbook retrieves a specified EML/MSG file directly from FireEye Email Security or Central Management.

Classifiers

Name	Description
FireEye Email Security - Phishing Alerts - Classifier	Classifies FireEye Email Security Alerts as Phishing Alerts incident type.
FireEye Email Security - Classifier	Classifies FireEye Email Security Alerts.

Incident Types

Name	Description
FireEye EX Alert

Integrations

Name	Description
FireEye Email Security	FireEye Email Security (EX) series protects against breaches caused by advanced email attacks.

Playbooks

Name	Description
Block Domain - FireEye Email Security	This playbook blocks domains using FireEye Email Security. The playbook checks whether the FireEye Email Security integration is enabled, whether the Domain input has been provided and if so, blocks the domain.
Get Email From Email Gateway - FireEye	This playbook retrieves a specified EML/MSG file directly from FireEye Email Security or Central Management.

Required Content Packs (5)

Pack Name	Pack By
Base	By: Cortex XSOAR
Common Scripts	By: Cortex XSOAR
Filters And Transformers	By: Cortex XSOAR
FireEye Central Management	By: Cortex XSOAR
FireEye Common Fields	By: Cortex XSOAR

Optional Content Packs (1)

Pack Name	Pack By
PhishingAlerts	By: Cortex XSOAR

All level dependencies (7)

Pack Name	Pack By
FireEye Network Security (NX)	By: Cortex XSOAR
Filters And Transformers	By: Cortex XSOAR
Common Scripts	By: Cortex XSOAR
FireEye Common Fields	By: Cortex XSOAR
Cortex REST API	By: Cortex XSOAR
Base	By: Cortex XSOAR
FireEye Central Management	By: Cortex XSOAR

2.0.29 - 762016 (January 14, 2024)

Integrations

FireEye Email Security

Updated the Docker image to: demisto/python3:3.10.13.84405.

Related pull requests:
- 32183

Download

2.0.28 - 733853 (January 2, 2024)

Integrations

FireEye Email Security

Updated the Docker image to: demisto/python3:3.10.13.83255.

Related pull requests:
- 31878

Download

2.0.27 - 6899385 (November 15, 2023)

Integrations

FireEye Email Security

Added a default timeout value to get_alerts_request.

Related pull requests:
- 30881

Download

2.0.26 - 6574459 (October 11, 2023)

Playbooks

Block Domain - FireEye Email Security

Improved the playbook tasks order for better visibility.

Related pull requests:
- 29512

Download

2.0.25 - 6429983 (September 26, 2023)

Integrations

FireEye Email Security

Updated the Docker image to: demisto/python3:3.10.13.74666.

Related pull requests:
- 29798
- 29701
- 29719
- 29688
- 29702
- 29506
- 29790
- 29793
- 29757
- 29788
- 29785
- 29684
- 29705

Download

2.0.24 - 6180521 (August 29, 2023)

Integrations

FireEye Email Security

Updated the Docker image to: demisto/python3:3.10.13.72123.

Related pull requests:
- 29291

Download

2.0.23 - 6010750 (August 10, 2023)

Integrations

FireEye Email Security

Updated the Docker image to: demisto/python3:3.10.12.68714.

Related pull requests:
- 28878

Download

2.0.22 - R5866730 (July 25, 2023)

Integrations

FireEye Email Security

Updated the Docker image to: demisto/python3:3.10.12.65389.

Related pull requests:
- 28464

Download

2.0.21 - R5801668 (July 18, 2023)

Integrations

FireEye Email Security

Updated the Docker image to: demisto/python3:3.10.12.63474.

Related pull requests:
- 27866

Download

2.0.20 - 5546375 (June 16, 2023)

Integrations

FireEye Email Security

Updated the Docker image to: demisto/python3:3.10.12.62631.

Related pull requests:
- 27334

Download

2.0.19 - 5363095 (May 25, 2023)

Integrations

FireEye Email Security

Updated the Docker image to: demisto/python3:3.10.11.61265.

Related pull requests:
- 26993

Download

2.0.18 - 5226855 (May 9, 2023)

Integrations

FireEye Email Security

Fixed a library incompatibility by downgrading the Docker image to: demisto/python3:3.10.11.54132.

Related pull requests:
- 26405

Download

2.0.17 - 5204212 (May 6, 2023)

Integrations

FireEye Email Security

Updated the Docker image to: demisto/python3:3.10.11.57293.

Related pull requests:
- 26341

Download

2.0.16 - R5170573 (May 2, 2023)

Integrations

FireEye Email Security

Updated the Docker image to: demisto/python3:3.10.11.54132.

Related pull requests:
- 25992

Download

2.0.15 - 4967142 (April 4, 2023)

Integrations

FireEye Email Security

Updated the Docker image to: demisto/python3:3.10.10.51930.

Related pull requests:
- 25718

Download

2.0.14 - 4856877 (March 20, 2023)

Integrations

FireEye Email Security

Updated the Docker image to: demisto/python3:3.10.10.49934.

Related pull requests:
- 25385

Download

2.0.13 - 4746941 (March 5, 2023)

Integrations

FireEye Email Security

Note: Organized the the integrations' parameters by sections. Relevant for XSIAM and XSOAR 8.1 and above.

Related pull requests:
- 25000

Download

2.0.12 - R4718798 (March 1, 2023)

Integrations

FireEye Email Security

Updated the pack category to Email.
Updated the Docker image to: demisto/python3:3.10.10.48392.

Related pull requests:
- 24813

Download

2.0.11 - R4646022 (February 19, 2023)

Integrations

FireEye Email Security

Updated the Docker image to: demisto/python3:3.10.10.47713.

Related pull requests:
- 24591

Download

2.0.10 - 4085738 (November 22, 2022)

Integrations

FireEye Email Security

Updated the Docker image to: demisto/python3:3.10.8.37233.
Documentation and metadata improvements.

Related pull requests:
- 22317

Download

2.0.9 - R3994332 (November 8, 2022)

Integrations

FireEye Email Security

Updated the Docker image to: demisto/python3:3.10.8.35482.
Fixed an issue where the timezone of the incidents was not compatible with UTC timezone.
Fixed an issue where the fireeye-ex-delete-blockedlist command did not work.

Related pull requests:
- 21739

Download

2.0.8 - 3118515 (June 19, 2022)

Integrations

FireEye Email Security

Removed excessive error traceback printing.
Updated the Docker image to: demisto/python3:3.10.4.30607.

Related pull requests:
- 19511

Download

2.0.7 - 2674843 (March 30, 2022)

Integrations

FireEye Email Security

Added type validations and other internal code improvements.

Download

2.0.6 - 2387690 (February 9, 2022)

Integrations

FireEye Email Security

Fixed an issue in the fetch incidents process where alerts were not fetched if they were created 48 hours or later than the last alert that was fetched
Updated the Docker image to: demisto/python3:3.10.1.25933.
Improved Error handling.

Download

2.0.5 - 2369391 (February 6, 2022)

Integrations

FireEye Email Security

Fixed an issue where the authorization token was not cached properly.

Download

2.0.4 - R2146019 (December 21, 2021)

Classifiers

New: FireEye Email Security - Phishing Alerts - Classifier

Classifies FireEye Email Security Alerts as Phishing Alerts incident type. (Available from Cortex XSOAR 6.0.0).

Playbooks

New: Get Email From Email Gateway - FireEye

This playbook retrieves a specified EML/MSG file directly from FireEye Email Security or Central Management. (Available from Cortex XSOAR 6.0.0).

Download

2.0.3 - 2042391 (December 2, 2021)

Integrations

FireEye Email Security

Fixed an issue where HTTP status code 206 was considered as an error.
Improved implementation of the test module command to get alerts from the last day only.
Updated the Docker image to demisto/python3:3.9.8.24399.

Download

2.0.2 - R2009340 (November 25, 2021)

Playbooks

New: Block Domain - FireEye Email Security

This playbook blocks domains using FireEye Email Security.
The playbook checks whether the FireEye Email Security integration is enabled, whether the Domain input has been provided and if so, blocks the domain. (Available from Cortex XSOAR 6.0.0).

Download

2.0.1 - 7561139 (September 12, 2021)

Integrations

FireEye Email Security

Updated the Docker image to: demisto/python3:3.9.7.24076.

Download

2.0.0 - 390296 (June 28, 2021)

Integrations

New: FireEye Email Security

Added the FireEye Email Security integration.

Classifiers

New: FireEye Email Security - Classifier

Classifies FireEye Email Security Alerts.

Download

1.0.0 - 390076 (June 11, 2021)

FireEye Email Security series protects against breaches caused by advanced email attacks.

Download

PUBLISHER

PLATFORMS

Cortex XSOARCortex XSIAM

INFO

Certification	Certified	Read more
Supported By	Cortex
Created	June 11, 2021
Last Release	January 14, 2024

WORKS WITH THE FOLLOWING INTEGRATIONS:

DISCLAIMER

Content packs are licensed by the Publisher identified above and subject to the Publisher’s own licensing terms. Palo Alto Networks is not liable for and does not warrant or support any content pack produced by a third-party Publisher, whether or not such packs are designated as “Palo Alto Networks-certified” or otherwise. For more information, see the Marketplace documentation.