Supported Cortex XSOAR versions: 6.5.0 and later.
Playbook that looks at what ASM sub-type the alert is and directs it to different pre/post mitigation scans (such as NMAP).
This playbook uses the following sub-playbooks, integrations, and scripts.
- NMAP - Banner Check
- NMAP - Single Port Scan
This playbook does not use any integrations.
This playbook does not use any commands.
|RemoteIP||Remote IP address in the alert.||alert.remoteip||Required|
|RemotePort||Remote port number in the alert.||alert.remoteport||Required|
|ASMRuleID||Attack Surface Management Rule ID.||alert.asmattacksurfaceruleid||Required|
|ScanNumber||Scan number in case there are multiple IDs in the parent playbook.||Required|
There are no outputs for this playbook.