Forti Sandbox | Marketplace

Details
Content
Dependencies
Version History

Pack contains integration with playbooks to upload file for malware analysis, retrieve the results and get file rating for previously scanned files from FortiSandbox

Integrations

Name	Description
FortiSandbox (Community Contribution)	FortiSandbox integration is used to submit files to FortiSandbox for malware analysis and retrieving the report of the analysis. It can also provide file rating based on hashes for already scanned files.

Playbooks

Name	Description
Detonate File - FortiSandbox	Main playbook to upload submissions to FortiSandbox, poll for verdict and retrieve report
FortiSandbox - Loop For Job Verdict	Playbook used to retrieve the verdict for a specific job id for a sample submitted to FortiSandbox
FortiSandbox - Upload Multiple Files	Playbook used to upload files to FortiSandbox
FortiSandbox - Loop for Job Submissions	Playbook used to retrieve job id for submissions of fortisandbox using the submission id.

Integrations

Name	Description
FortiSandbox (Community Contribution)	FortiSandbox integration is used to submit files to FortiSandbox for malware analysis and retrieving the report of the analysis. It can also provide file rating based on hashes for already scanned files.

Playbooks

Name	Description
Detonate File - FortiSandbox	Main playbook to upload submissions to FortiSandbox, poll for verdict and retrieve report
FortiSandbox - Upload Multiple Files	Playbook used to upload files to FortiSandbox

Required Content Packs (2)

Pack Name	Pack By
Common Scripts	By: Cortex XSOAR
Base	By: Cortex XSOAR

Optional Content Packs (0)

Pack Name	Pack By

All level dependencies (4)

Pack Name	Pack By
Common Scripts	By: Cortex XSOAR
MITRE ATT&CK	By: Cortex XSOAR
Base	By: Cortex XSOAR
Cortex REST API	By: Cortex XSOAR

PUBLISHER

vibhuabharadwaj

PLATFORMS

Cortex XSOARCortex XSIAM

INFO

Supported By	Community
Created	February 14, 2021
Last Release	August 7, 2023

WORKS WITH THE FOLLOWING INTEGRATIONS:

DISCLAIMER

Content packs are licensed by the Publisher identified above and subject to the Publisher’s own licensing terms. Palo Alto Networks is not liable for and does not warrant or support any content pack produced by a third-party Publisher, whether or not such packs are designated as “Palo Alto Networks-certified” or otherwise. For more information, see the Marketplace documentation.