Supported Cortex XSOAR versions: 6.0.0 and later.
LogPoint SIEM Playbook guides users on use cases like blocking IP and domain and disabling users using products like CheckPoint Firewall, Active Directory, and VirusTotal. The actions depicted in the playbook helps analysts create their playbooks based on actual requirements and products deployed. (Available from Cortex XSOAR 6.0.0).
This playbook uses the following sub-playbooks, integrations, and scripts.
This playbook does not use any sub-playbooks.
- Active Directory Query v2
- LogPoint SIEM Integration
There are no inputs for this playbook.
There are no outputs for this playbook.