Skip to main content

AWS Sagemaker

This Integration is part of the AWS Sagemaker Pack.#

AWS Sagemaker - Cortex XSOAR Phishing Email Classifier

Configure AWS Sagemaker on Cortex XSOAR#

  1. Navigate to Settings > Integrations > Servers & Services.

  2. Search for AWS Sagemaker.

  3. Click Add instance to create and configure a new integration instance.

    AWS access keyTrue
    AWS secret keyTrue
    AWS Region codeFalse
    Endpoint NameTrue
    Use system proxy settingsFalse
  4. Click Test to validate the URLs, token, and connection.


You can execute these commands from the Cortex XSOAR CLI, as part of an automation, or in a playbook. After you successfully execute a command, a DBot message appears in the War Room with the command details.


Classify input text (usually email content)

Base Command#



Argument NameDescriptionRequired
inputTextThe input text (usually email subject + body).Optional

Context Output#

DBotPhishingPrediction.LabelstringThe predicated label: malicious \ other
DBotPhishingPrediction.ProbabilitynumberThe predication probability (range 0-1)

Command Example#

!predict-phishing inputText="Dear Info, Please confirm account password...", "Major Update: General Availability feedback..."