Supported Cortex XSOAR versions: 6.0.0 and later.
This script will take a random Cyren Threat InDepth feed indicator and its relationships and create a threat hunting incident for you.
The main query parameters for the resulting, internal indicator query are:
- Seen for the first time by the feed source within the last 7 days.
- No investigation on it yet.
- Must have relationships to other indicators.
|Tags||incidents, ioc, cyren, hunt|
|indicator_type||Optional: One of |
|incident_type||Optional: If not provided, an incident of type "Hunt" is created|
There are no outputs for this script.
Successfully created incident Cyren Threat InDepth Threat Hunt. Click here to investigate: 1234.