Skip to main content

Rapid Breach Response

Rapid Breach Response 1.6.3 356353

This content Pack helps you collect, investigate, and remediate incidents related to major breaches.

Header Image

This pack has a collection of playbooks to rapidly respond to high profile breaches with existing deployed tools in your enterprise.
The playbooks in this pack can also be used as a template to hunt and block these indicators using additional tools in your environment.
This pack contains the response playbooks for the following breaches:

How to enable it?
  • Install the pack.
  • Check if the pack has the steps that are relevant to the tools used in your environment.
  • Create a job that will run this playbook on a periodic basis.

HAFNIUM - Exchange 0-day exploits

PUBLISHER

Cortex XSOAR

INFO

CertificationRead more
Supported ByCortex XSOAR
CreatedDecember 17, 2020
Last ReleaseMay 5, 2021
HuntingIncident Response
WORKS WITH THE FOLLOWING INTEGRATIONS:

DISCLAIMER
Content packs are licensed by the Publisher identified above and subject to the Publisher’s own licensing terms. Palo Alto Networks is not liable for and does not warrant or support any content pack produced by a third-party Publisher, whether or not such packs are designated as “Palo Alto Networks-certified” or otherwise. For more information, see the Marketplace documentation.