Analyst1

Details
Content
Dependencies
Version History

This integration utilizes Analyst1's system to support multiple operations to assist the cyber analyst. These include intelligence collection from any source, deployment of configured indicator or signature sets for improved boundary/host defense, and enriching XSOAR indicators with data provided by the Analyst1 REST API, such as actor and malware information, activity and reported dates, evidence and hit counts, and more. For assistance with this app and any use cases please contact support@analyst1.com.

Integrations

Name	Description
Analyst1 (Partner Contribution)	This integration utilizes Analyst1's system to enrich Demisto indicators with data provided by the Analyst1 REST API, such as actor and malware information, activity and reported dates, evidence and hit counts, and more.
illuminate (Deprecated) (Partner Contribution)	Deprecated. Use Analyst1 integration instead.

Playbooks

Name	Description
Illuminate Integration Demonstration	Deprecated. No available replacement. A quick demonstration of the various illuminate enrichment commands.
Analyst1 Integration Demonstration	A quick demonstration of the various Analyst1 enrichment commands.

Integrations

Name	Description
illuminate (Deprecated) (Partner Contribution)	Deprecated. Use Analyst1 integration instead.
Analyst1 (Partner Contribution)	This integration utilizes Analyst1's system to enrich Demisto indicators with data provided by the Analyst1 REST API, such as actor and malware information, activity and reported dates, evidence and hit counts, and more.

Playbooks

Name	Description
Illuminate Integration Demonstration	Deprecated. No available replacement. A quick demonstration of the various illuminate enrichment commands.
Analyst1 Integration Demonstration	A quick demonstration of the various Analyst1 enrichment commands.

Required Content Packs (2)

Pack Name	Pack By
Base	By: Cortex XSOAR
Filters And Transformers	By: Cortex XSOAR

Optional Content Packs (0)

Pack Name	Pack By

All level dependencies (2)

Pack Name	Pack By
Filters And Transformers	By: Cortex XSOAR
Base	By: Cortex XSOAR

1.1.9 - 1146238 (July 3, 2024)

Integrations

Documentation and metadata improvements.
Updated the Docker image to: demisto/python3:3.10.14.99865.

Related pull requests:
- 35136

Download

1.1.8 - 839519 (February 20, 2024)

Integrations

Analyst1

Updated the Docker image to: demisto/python3:3.10.13.87159.

Related pull requests:
- 33007

Download

1.1.7 - 798475 (February 1, 2024)

Integrations

Analyst1

Updated the Docker image to: demisto/python3:3.10.13.86272.

Related pull requests:
- 32533

Download

1.1.6 - 762016 (January 14, 2024)

Integrations

Analyst1

Updated the Docker image to: demisto/python3:3.10.13.84405.

Related pull requests:
- 32183

Download

1.1.5 - 722180 (December 28, 2023)

Integrations

Analyst1

Updated the Docker image to: demisto/python3:3.10.13.83255.

Related pull requests:
- 31828

Download

1.1.4 - 6894987 (November 15, 2023)

Integrations

Analyst1

Updated the Docker image to: demisto/python3:3.10.13.80014.

Related pull requests:
- 30914

Download

1.1.3 - 6259960 (September 7, 2023)

Integrations

Analyst1

Updated the Docker image to: demisto/python3:3.10.13.72123.

Related pull requests:
- 29530

Download

1.1.2 - 6117817 (August 22, 2023)

Integrations

Analyst1

Updated the Docker image to: demisto/python3:3.10.12.68714.

Related pull requests:
- 29103

Download

1.1.1 - 5976562 (August 7, 2023)

Integrations

Analyst1

Updated the Docker image to: demisto/python3:3.10.12.67728.

Related pull requests:
- 28805

Download

1.1.0 - R5866730 (July 25, 2023)

Integrations

Analyst1

Updated the Docker image to: demisto/python3:3.10.12.65389.
Added multiple new commands to support newer Analyst1 API functions:
-- analyst1-get-sensor-taskings
-- analyst1-get-sensors
-- analyst1-batch-check
-- analyst1-get-sensor-config
-- analyst1-get-sensor-diff
-- analyst1-indicator-by-id
-- analyst1-batch-check-post
-- analyst1-evidence-submit
-- analyst1-evidence-status
Regression testing against Analyst1 2.1.0

Related pull requests:
- 27685
- 28418

Download

1.0.18 - 5844861 (July 23, 2023)

Integrations

Analyst1

Updated the Docker image to: demisto/python3:3.10.12.65389.

Related pull requests:
- 28387

Download

1.0.17 - R5801668 (July 18, 2023)

Integrations

Analyst1

Updated the Docker image to: demisto/python3:3.10.12.63474.

Related pull requests:
- 27682

Download

PUBLISHER

PLATFORMS

Cortex XSOARCortex XSIAM

INFO

Certification	Certified	Read more
Supported By	Partner
Created	June 30, 2020
Last Release	July 3, 2024

WORKS WITH THE FOLLOWING INTEGRATIONS:

DISCLAIMER

Content packs are licensed by the Publisher identified above and subject to the Publisher’s own licensing terms. Palo Alto Networks is not liable for and does not warrant or support any content pack produced by a third-party Publisher, whether or not such packs are designated as “Palo Alto Networks-certified” or otherwise. For more information, see the Marketplace documentation.