Perform Threat Lookup from Security Case
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-05-2024 09:46 AM
Does anyone have any ideas on how to run a Threat Lookup, or even better to automate the process, from the Security Case > Case Artifacts > Observables? In the attached screenshot, you'll see that running a threat lookup is not an option from the Actions menu. I think either adding the option here or automating the process once an Observable is added would be ideal.
Labels:
1 REPLY 1
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
2 weeks ago
Hi,
“Run Threat Lookup” becomes available for observables once you enable a Threat Intelligence integration (such as VirusTotal) from the Integration Configuration module.
Have you already enabled a Threat Intelligence integration?
