Skip to main content

AWS Sagemaker

AWS Sagemaker - Cortex XSOAR Phishing Email Classifier

Configure AWS Sagemaker on Cortex XSOAR#

  1. Navigate to Settings > Integrations > Servers & Services.

  2. Search for AWS Sagemaker.

  3. Click Add instance to create and configure a new integration instance.

    ParameterRequired
    AWS access keyTrue
    AWS secret keyTrue
    AWS Region codeFalse
    Endpoint NameTrue
    Use system proxy settingsFalse
  4. Click Test to validate the URLs, token, and connection.

Commands#

You can execute these commands from the Cortex XSOAR CLI, as part of an automation, or in a playbook. After you successfully execute a command, a DBot message appears in the War Room with the command details.

predict-phishing#


Classify input text (usually email content)

Base Command#

predict-phishing

Input#

Argument NameDescriptionRequired
inputTextThe input text (usually email subject + body).Optional

Context Output#

PathTypeDescription
DBotPhishingPrediction.LabelstringThe predicated label: malicious \ other
DBotPhishingPrediction.ProbabilitynumberThe predication probability (range 0-1)

Command Example#

!predict-phishing inputText="Dear Info, Please confirm account password...", "Major Update: General Availability feedback..."