Overview
IRONSCALES is an AI-powered email security platform that detects, remediates, and prevents phishing and BEC attacks while training users through integrated awareness tools.
This pack includes
- Collection of Ironscales event log messages.
- Log Normalization - XDM mapping for key event types.
Supported Event Types
- All event types from Get list of Incidents API call.
Enabling Box Event Collector
To configure the Ironscales Event Collector to receive log messages:
- Make sure you have the Ironscales Event Collector pack installed on your Cortex XSIAM tenant.
- Go to Settings → Configurations → Automation & Feed Integrations.
- In the search bar, type Ironscales and click + Add instance.
- Follow the integration steps to send logs from Box to your Cortex XSIAM tenant.
