Skip to main content

Accenture CTI v2

Accenture CTI provides intelligence regarding security threats and vulnerabilities.

Accenture Security

Accenture CTI v2

This pack has 2 sub-pack/integration namely:

  • ACTI Indicator Query
  • ACTI Vulnerability Query

This pack automates the detection of threats and the triage/investigation of incidents by importing Accenture CTI (ACTI) data and intelligence reports into the XSOAR platform. The incident-enrichment functionality not only alleviates tedious research tasks traditionally performed by analysts, but also automatically folds ACTI intelligence reports associated with a given incident into the incident. The result is a complete picture of what ACTI knows about any given threat the moment the analyst opens the XSOAR incident.


What to expect from the Accenture Cyber Threat Intelligence (Accenture CTI v2) pack?

  • A playbook that automatically queries Accenture's IntelGraph API to pull context for IOC and associated intelligence reports into XSOAR incidents.
  • Reputation Commands to query for network-level indicators (IP, Domain, and URL).
  • Command to query for ACTI intelligence reports.
  • Command to query ACTI Vulnerability database.
  • The pack also includes 6 additional playbooks that enable users to conduct ad hoc queries and sub-playbooks that enable users to pull ACTI data into either XSOAR's generic playbooks or playbooks from other vendors.

PUBLISHER

Accenture

INFO

CertificationRead more
Supported ByPartner
CreatedJanuary 17, 2022
Last ReleaseMay 10, 2022
WORKS WITH THE FOLLOWING INTEGRATIONS:

DISCLAIMER
Content packs are licensed by the Publisher identified above and subject to the Publisher’s own licensing terms. Palo Alto Networks is not liable for and does not warrant or support any content pack produced by a third-party Publisher, whether or not such packs are designated as “Palo Alto Networks-certified” or otherwise. For more information, see the Marketplace documentation.