List Device Events - Chronicle
Google SecOps Pack.#
This Playbook is part of theThis playbook receives ChronicleAsset identifier information and provides a list of events related to each one of them. Supported integration: Chronicle, Google SecOps
#
DependenciesThis playbook uses the following sub-playbooks, integrations, and scripts.
#
Sub-playbooksThis playbook does not use any sub-playbooks.
#
Integrations- Chronicle
- Google SecOps
#
Scripts- DeleteContext
#
Commands- gcb-list-events
#
Playbook InputsName | Description | Default Value | Required |
---|---|---|---|
chronicleasset_hostname | The hostname associated with the ChronicleAsset. | Optional | |
chronicleasset_ip | The IP address associated with the ChronicleAsset. | Optional | |
chronicleasset_mac | The MAC address associated with the ChronicleAsset. | Optional | |
chronicleasset_product_id | The product ID associated with the ChronicleAsset. | Optional |
#
Playbook OutputsPath | Description | Type |
---|---|---|
GoogleChronicleBackstory.Events | List of events associated with the ChronicleAsset. | unknown |