Connect to MAR using its DXL client
McAfee Active Response
- Details
- Content
- Dependencies
- Version History
Connect to MAR using its DXL client
Name | Description |
---|---|
McAfee Active Response |
Name | Description |
---|---|
MAR - Endpoint data collection | Use McAfee Active Response to collect data from an endpoint for IR purposes (requires ePO as well). Input:
|
Name | Description |
---|---|
McAfee Active Response | Connect to MAR using its DXL client |
Name | Description |
---|---|
MAR - Endpoint data collection | Use McAfee Active Response to collect data from an endpoint for IR purposes (requires ePO as well). Input:
|
Pack Name | Pack By |
---|---|
McAfee ePO | By: Cortex XSOAR |
Common Scripts | By: Cortex XSOAR |
Base | By: Cortex XSOAR |
Pack Name | Pack By |
---|
Pack Name | Pack By |
---|---|
Common Scripts | By: Cortex XSOAR |
Active Directory Query | By: Cortex XSOAR |
F5 Silverline | By: Cortex XSOAR |
VulnDB | By: Cortex XSOAR |
CVE Search | By: Cortex XSOAR |
Cisco Firepower | By: Cortex XSOAR |
CrowdStrike Falcon Intelligence Sandbox | By: Cortex XSOAR |
Google Maps | By: Cortex XSOAR |
Sophos XG Firewall | By: Cortex XSOAR |
Zscaler Internet Access | By: Cortex XSOAR |
Rapid7 InsightVM | By: Cortex XSOAR |
McAfee ePO | By: Cortex XSOAR |
Common Playbooks | By: Cortex XSOAR |
PAN-OS by Palo Alto Networks | By: Cortex XSOAR |
ServiceNow | By: Cortex XSOAR |
ThreatX | By: Cortex XSOAR |
Slack | By: Cortex XSOAR |
Cylance Protect | By: Cortex XSOAR |
Rasterize | By: Cortex XSOAR |
ARIAPacketIntelligence | By: ARIA Cybersecurity Solutions |
FortiGate | By: Cortex XSOAR |
Remote Access | By: Cortex XSOAR |
Cisco Umbrella Investigate | By: Cortex XSOAR |
MITRE ATT&CK | By: Cortex XSOAR |
Signal Sciences WAF | By: Cortex XSOAR |
Image OCR | By: Cortex XSOAR |
Kenna | By: Cortex XSOAR |
Cisco ASA | By: Cortex XSOAR |
VirusTotal - Private API (Deprecated) | By: VirusTotal |
Filters And Transformers | By: Cortex XSOAR |
Check Point Firewall | By: Cortex XSOAR |
Akamai WAF | By: Cortex XSOAR |
Cisco Secure Cloud Analytics (Stealthwatch Cloud) | By: Cortex XSOAR |
Playbooks
MAR - Endpoint data collection
Change the playbook flow to use the McAfee ePO v2 integration if it is installed and configured.
Integrations
McAfee Active Response
- Updated the Docker image to: demisto/dxl2:1.0.0.24033.
Integrations
- README.md
Fixed image paths in documentation.
PUBLISHER
Cortex
PLATFORMS
INFO
Certification | Certified | Read more |
Supported By | Cortex | |
Created | November 9, 2020 | |
Last Release | January 29, 2023 |
WORKS WITH THE FOLLOWING INTEGRATIONS:


