Machine Learning
- Details
- Content
- Dependencies
- Version History
Help to manage machine learning models in Cortex XSOAR
Name | Description |
---|---|
ImportMLModel | Imports a file that contains an ML model. |
DBotPredictOutOfTheBox | Deprecated. Use DBotPredictOutOfTheBoxV2 instead. |
DBotPredictOutOfTheBoxV2 | Predict phishing incidents using the out-of-the-box pre-trained model. |
ExportMLModel | Exports an existing ML model to a file. |
HashIncidentsFields | Hash fields from the incident list. |
EvaluateMLModllAtProduction | Evaluates an ML model in production. |
ExtendQueryBasedOnPhishingLabels | A helper script for the DBot Create Phishing Classifier V2 playbook. This script extends the query based on the phishingLabels argument. |
DBotPredictIncidentsBatch | Apply a trained ML model on multiple incidents at once, to compare incidents how the incidents were labeled by analysts, to the predictions of the model. This script is aimed to help evaluate a trained model using past incidents. |
Name | Description |
---|---|
DBot Create Phishing Classifier V2 | Create a phishing classifier using machine learning techniques, based on email content. |
DBot Create Phishing Classifier V2 Job | Train the phishing machine learning model. This playbook should be used as job, to run repeatedly, for example every week. |
DBot Create Phishing Classifier V2 From File | Create a phishing classifier using machine learning. The classifier is based on incidents files extracted from email content. |
Pack Name | Pack By |
---|---|
Base | By: Cortex XSOAR |
Common Scripts | By: Cortex XSOAR |
Pack Name | Pack By |
---|
Pack Name | Pack By |
---|---|
Base | By: Cortex XSOAR |
Common Scripts | By: Cortex XSOAR |
Cortex REST API | By: Cortex XSOAR |
Scripts
ExtendQueryBasedOnPhishingLabels
- Fixed an issue where custom labels resulted in an error.
- Updated the Docker image to: demisto/python3:3.10.9.46032.
EvaluateMLModllAtProduction
- Fixed an issue where custom labels resulted in an error.
- Updated the Docker image to: demisto/ml:1.0.0.45981.
DBotPredictIncidentsBatch
- Fixed an issue where custom labels resulted in an error.
- Updated the Docker image to: demisto/ml:1.0.0.45981.
- 23844
Download
Scripts
HashIncidentsFields
- Updated the Docker image to: demisto/python3:3.10.4.27798.
- Fixed lint issues.
Playbooks
DBot Create Phishing Classifier V2
Improved memory usage while fetching incidents for training.
Scripts
New: ExtendQueryBasedOnPhishingLabels
A helper script for the DBot Create Phishing Classifier V2 playbook. This script extends the query based on the phishingLabels argument. (Available from Cortex XSOAR 5.0.0).
Scripts
HashIncidentsFields
- Updated the Docker image to: demisto/python3:3.9.8.24399.
PUBLISHER
PLATFORMS
INFO
Certification | Certified | Read more |
Supported By | Cortex | |
Created | June 30, 2020 | |
Last Release | February 18, 2024 |