Use Darktrace Basic Model Breach Handler and Darktrace Basic AI Analyst Event Handler instead.
Handles each fetched Darktrace model breach by gathering additional detail about the activity and device, providing enrichment data from Darktrace and XSOAR, linking similar incidents, and giving the ability to acknowledge the model breach and close the incident.
This playbook uses the following sub-playbooks, integrations, and scripts.
- Entity Enrichment - Generic v3
There are no inputs for this playbook.
There are no outputs for this playbook.