Connect to MAR using its DXL client
McAfee Active Response
- Details
- Content
- Dependencies
- Version History
Connect to MAR using its DXL client
Integrations
| Name | Description |
|---|---|
| McAfee Active Response |
Playbooks
| Name | Description |
|---|---|
| MAR - Endpoint data collection | Use McAfee Active Response to collect data from an endpoint for IR purposes (requires ePO as well). Input:
|
Integrations
| Name | Description |
|---|---|
| McAfee Active Response | Connect to MAR using its DXL client |
Playbooks
| Name | Description |
|---|---|
| MAR - Endpoint data collection | Use McAfee Active Response to collect data from an endpoint for IR purposes (requires ePO as well). Input:
|
Required Content Packs (3)
| Pack Name | Pack By |
|---|---|
| McAfee ePO | By: Cortex XSOAR |
| Common Scripts | By: Cortex XSOAR |
| Base | By: Cortex XSOAR |
Optional Content Packs (0)
| Pack Name | Pack By |
|---|
All level dependencies (33)
| Pack Name | Pack By |
|---|---|
| Common Scripts | By: Cortex XSOAR |
| Active Directory Query | By: Cortex XSOAR |
| F5 Silverline | By: Cortex XSOAR |
| VulnDB | By: Cortex XSOAR |
| CVE Search | By: Cortex XSOAR |
| Cisco Firepower | By: Cortex XSOAR |
| CrowdStrike Falcon Intelligence Sandbox | By: Cortex XSOAR |
| Google Maps | By: Cortex XSOAR |
| Sophos XG Firewall | By: Cortex XSOAR |
| Zscaler Internet Access | By: Cortex XSOAR |
| Rapid7 InsightVM | By: Cortex XSOAR |
| McAfee ePO | By: Cortex XSOAR |
| Common Playbooks | By: Cortex XSOAR |
| PAN-OS by Palo Alto Networks | By: Cortex XSOAR |
| ServiceNow | By: Cortex XSOAR |
| ThreatX | By: Cortex XSOAR |
| Slack | By: Cortex XSOAR |
| Cylance Protect | By: Cortex XSOAR |
| Rasterize | By: Cortex XSOAR |
| ARIAPacketIntelligence | By: ARIA Cybersecurity Solutions |
| FortiGate | By: Cortex XSOAR |
| Remote Access | By: Cortex XSOAR |
| Cisco Umbrella Investigate | By: Cortex XSOAR |
| MITRE ATT&CK | By: Cortex XSOAR |
| Signal Sciences WAF | By: Cortex XSOAR |
| Image OCR | By: Cortex XSOAR |
| Kenna | By: Cortex XSOAR |
| Cisco ASA | By: Cortex XSOAR |
| VirusTotal - Private API (Deprecated) | By: VirusTotal |
| Filters And Transformers | By: Cortex XSOAR |
| Check Point Firewall | By: Cortex XSOAR |
| Akamai WAF | By: Cortex XSOAR |
| Cisco Secure Cloud Analytics (Stealthwatch Cloud) | By: Cortex XSOAR |
1.0.3 - 2183875 (December 30, 2021)
Playbooks
MAR - Endpoint data collection
Change the playbook flow to use the McAfee ePO v2 integration if it is installed and configured.
1.0.2 - R2146019 (December 21, 2021)
Integrations
McAfee Active Response
- Updated the Docker image to: demisto/dxl2:1.0.0.24033.
1.0.1 - R264879 (November 9, 2020)
Integrations
- README.md
Fixed image paths in documentation.
PUBLISHER
Cortex
PLATFORMS
Cortex XSOARCortex XSIAM
INFO
| Certification | Certified | Read more |
| Supported By | Cortex | |
| Created | November 9, 2020 | |
| Last Release | January 29, 2023 |
WORKS WITH THE FOLLOWING INTEGRATIONS:
