Hunt Extracted Hashes V2

This playbook extracts IOCs from the incident details and attached files using regular expressions and then hunts for hashes on endpoints in the organization using available tools. The playbook supports multiple types of attachments. For the full supported attachments list, refer to "Extract Indicators From File - Generic v2".

Dependencies

This playbook uses the following sub-playbooks, integrations, and scripts.

Sub-playbooks

  • Extract Indicators From File - Generic v2
  • Search Endpoints By Hash - Generic V2

Integrations

This playbook does not use any integrations.

Scripts

This playbook does not use any scripts.

Commands

  • extractIndicators

Playbook Inputs


NameDescriptionDefault ValueRequired
FileThe file from which to extract indicators.File.NoneOptional

Playbook Outputs


There are no outputs for this playbook.

Playbook Image


![Hunt Extracted Hashes V2](Insert the link to your image here)