Skip to main content

AppSentinels.ai

This Integration is part of the AppSentinels.ai Pack.#

Supported versions

Supported Cortex XSOAR versions: 6.10.0 and later.

Appsentinels.ai offers a platform for collecting, analyzing, and managing security events to provide comprehensive application protection.

This is the default integration for this content pack when configured by the Data Onboarder in Cortex XSIAM.

Configure AppSentinels.ai in Cortex#

ParameterDescriptionRequired
Your server URLTrue
User KeyThe Client User key for connection with AppSentinels.ai.True
API KeyThe Client API key for connection with AppSentinels.ai.True
Organization nameThe organization name.True
Trust any certificate (not secure)False
Use system proxy settingsFalse
Fetch eventsFalse
Maximum number of audit logs per fetchMaximum number of Audit Log entries to retrieve per fetch cycle. default value is 5000.False

Commands#

You can execute these commands from the CLI, as part of an automation, or in a playbook. After you successfully execute a command, a DBot message appears in the War Room with the command details.

appsentinels-get-events#


Retrieves a list of events from the AppSentinels.ai instance.

Base Command#

appsentinels-get-events

Input#

Argument NameDescriptionRequired
should_push_eventsSet this argument to true to create events, otherwise it only displays them. Possible values are: true, false. Default is false.Required
limitReturns no more than the specified number of events.Optional
first_fetchThe UTC date or relative timestamp from when to start fetching events. Supported formats: N minutes, N hours, N days, N weeks, N months, N years, yyyy-mm-dd, yyyy-mm-ddTHH:MM.Optional

Context Output#

There is no context output for this command.