Enrich McAfee DXL using 3rd party sandbox v2

Example of bridging DXL to a third party sandbox. Detonate a file in 3rd party sandbox and if malicious, push its MD5, SHA1 and SHA256 hashes to McAfee DXL.

Dependencies

This playbook uses the following sub-playbooks, integrations, and scripts.

Sub-playbooks

Detonate File - Generic

Integrations

McAfee DXL

Scripts

Exists

Commands

closeInvestigation
dxl-send-event

Playbook Inputs

There are no inputs for this playbook.

Playbook Outputs

There are no outputs for this playbook.

Playbook Image

![Enrich McAfee DXL using 3rd party sandbox v2](Insert the link to your image here)

PAN-OS

Cortex Data Lake

Cortex XSOAR

PAN-OS

Cortex Data Lake

Cortex XSOAR

Enrich McAfee DXL using 3rd party sandbox v2

Dependencies

Sub-playbooks

Integrations

Scripts

Commands

Playbook Inputs

Playbook Outputs

Playbook Image

PAN-OS

Cortex Data Lake

Cortex XSOAR

PAN-OS

Cortex Data Lake

Cortex XSOAR

#Dependencies

#Sub-playbooks

#Integrations

#Scripts

#Commands

#Playbook Inputs

#Playbook Outputs

#Playbook Image

Dependencies

Sub-playbooks

Integrations

Scripts

Commands

Playbook Inputs

Playbook Outputs

Playbook Image