Supported Cortex XSOAR versions: 6.5.0 and later.
The "Spear Phishing Investigation" playbook is designed to detect patterns that indicates a spear phishing attempt by the attacker.
This playbook uses the following sub-playbooks, integrations, and scripts.
This playbook does not use any sub-playbooks.
This playbook does not use any integrations.
|Results of the domain squatting investigation.
|A comma-separated list of keywords to search in the email body.
For example: name of the organization finance app that the attacker might impersonate.
|The phishing mail body.
There are no outputs for this playbook.