Uses McAfee ATD to push any malicious verdicts over DXL.
Detonates a file in ATD and if malicious, pushes its MD5, SHA1 and SHA256 hashes to McAfee DXL.
McAfee DXL
- Details
- Content
- Dependencies
- Version History
McAfee DXL client
Playbooks
Name | Description |
---|---|
Enrich DXL with ATD verdict v2 | |
Enrich McAfee DXL using 3rd party sandbox v2 | Example of bridging DXL to a third party sandbox. |
Integrations
Name | Description |
---|---|
McAfee DXL | McAfee DXL client |
Playbooks
Name | Description |
---|---|
Enrich DXL with ATD verdict v2 | Uses McAfee ATD to push any malicious verdicts over DXL. |
Enrich McAfee DXL using 3rd party sandbox v2 | Example of bridging DXL to a third party sandbox. |
Integrations
Name | Description |
---|---|
McAfee DXL | McAfee DXL client |
Required Content Packs (3)
Pack Name | Pack By |
---|---|
Common Scripts | By: Cortex XSOAR |
Base | By: Cortex XSOAR |
Common Playbooks | By: Cortex XSOAR |
Optional Content Packs (1)
Pack Name | Pack By |
---|---|
McAfee Advanced Threat Defense | By: Cortex XSOAR |
All level dependencies (6)
Pack Name | Pack By |
---|---|
MITRE ATT&CK | By: Cortex XSOAR |
Rasterize | By: Cortex XSOAR |
Cortex REST API | By: Cortex XSOAR |
Common Playbooks | By: Cortex XSOAR |
Filters And Transformers | By: Cortex XSOAR |
Common Scripts | By: Cortex XSOAR |
1.0.0 - R264879 (November 9, 2020) Download
Playbook
Enrich DXL with ATD verdict v2 Playbook
- Replaced deprecated scripts
Enrich McAfee DXL using 3rd party sandbox v2 Playbook
- Replaced deprecated scripts
PUBLISHER
Cortex
PLATFORMS
Cortex XSOARCortex XSIAM
INFO
Certification | Certified | Read more |
Supported By | Cortex | |
Created | November 9, 2020 | |
Last Release | March 8, 2023 |
WORKS WITH THE FOLLOWING INTEGRATIONS:

