Search Endpoints By Hash - Generic

Deprecated

Use the Search Endpoints By Hash - Generic V2 playbook instead.

Deprecated. Use the Search Endpoints By Hash - Generic V2 playbook instead. Hunts using available tools.

Dependencies#

This playbook uses the following sub-playbooks, integrations, and scripts.

Sub-playbooks#

  • Search Endpoints By Hash - Carbon Black Protection
  • Search Endpoints By Hash - Carbon Black Response
  • Search Endpoints By Hash - TIE
  • Search Endpoints By Hash - CrowdStrike
  • Search Endpoints By Hash - Cybereason

Integrations#

This playbook does not use any integrations.

Scripts#

This playbook does not use any scripts.

Commands#

This playbook does not use any commands.

Playbook Inputs#


NameDescriptionDefault ValueSourceRequired
MD5HashThe MD5 file hash.MD5FileOptional
SHA1HashThe SHA1 file hash.SHA1FileOptional
SHA256HashThe SHA256 file hash.SHA256FileOptional

Playbook Outputs#


PathDescriptionType
Endpoint.HostnameThe device hostname.string
EndpointThe endpoint.unknown

Playbook Image#


Search_Endpoints_By_Hash_Generic