CTM360 v2.3.4
Take action on incidents derived from threat intelligence that is directly linked to your organization.
- Author:
- CTM360
- Support:
- partner
- Default data source:
- CTM360_CyberBlindspot
Dashboards (2)
- CyberBlindspot Incident Dashboard
- HackerView Incident Dashboard
Incident fields (46)
- CTM360 CyberBlindspot BC Breach Source
- CTM360 CyberBlindspot BC Domain
- CTM360 CyberBlindspot BC Email
- CTM360 CyberBlindspot BC Executive Name
- CTM360 CyberBlindspot BC Password
- CTM360 CyberBlindspot BC Username
- CTM360 CyberBlindspot Brand
- CTM360 CyberBlindspot CC CVV
- CTM360 CyberBlindspot CC Card Number
- CTM360 CyberBlindspot CC Expiry Month
- CTM360 CyberBlindspot CC Expiry Year
- CTM360 CyberBlindspot Class
- CTM360 CyberBlindspot Confirmation Time
- CTM360 CyberBlindspot Course of Action
- CTM360 CyberBlindspot First Seen
- CTM360 CyberBlindspot Incident Type
- CTM360 CyberBlindspot Last Seen
- CTM360 CyberBlindspot ML Computer Name
- CTM360 CyberBlindspot ML Date Compromised
- CTM360 CyberBlindspot ML Domain
- CTM360 CyberBlindspot ML Hostname
- CTM360 CyberBlindspot ML Malware Path
- CTM360 CyberBlindspot ML Masked Password
- CTM360 CyberBlindspot ML Operating System
- CTM360 CyberBlindspot ML Password
- CTM360 CyberBlindspot ML Software
- CTM360 CyberBlindspot ML Source URI
- CTM360 CyberBlindspot ML Sources
- CTM360 CyberBlindspot ML Stealer Family
- CTM360 CyberBlindspot ML URL Path
- CTM360 CyberBlindspot ML User
- CTM360 CyberBlindspot ML User Domain
- CTM360 CyberBlindspot ML Website
- CTM360 CyberBlindspot Module
- CTM360 CyberBlindspot Remarks
- CTM360 CyberBlindspot Risks
- CTM360 CyberBlindspot Screenshots
- CTM360 CyberBlindspot Severity
- CTM360 CyberBlindspot Status
- CTM360 CyberBlindspot Subject
- CTM360 CyberBlindspot Ticket ID
- CTM360 CyberBlindspot Timestamp
- CTM360 HackerView Asset Type
- CTM360 HackerView Potential Attack Types
- CTM360 HackerView Potential Impact
- CTM360 HackerView Technologies
Incident types (2)
Integrations (2)
Playbooks (5)
README
In External Attack Surface Management, HackerView provides an inventory of your digital assets discovered automatically, identifies issues (including vulnerabilities, misconfigurations, and exposures) in these digital assets, and generates a digital risk scorecard for your organization. The scorecard can also be generated for a limited number of your vendors for free.
In Digital Risk Protection, CyberBlindspot detects threats across the surface, deep, and dark web and monitors for over 40 threat types, i.e., actual or potential threats targeting your organization, brands, and executives. These incidents include phishing, social media fraud, suspicious mobile apps, look-alike domains, data leakage, etc.
What is CTM360?
CTM360 is a Software-as-a-Service (SaaS) technology platform that provides External Attack Surface Management, Digital Risk Protection, and Cyber Threat Intelligence in one consolidated platform.
What does this pack do?
This pack allows you to integrate HackerView & CyberBlindspot incidents with Cortex XSOAR. Automated integration fetches and populates incidents into Cortex XSOAR from HackerView & CyberBlindspot platforms along with all the details of the incident and leads the Cortex XSOAR analyst to take relevant actions over the incidents such as:
- HackerView:
- Incident response and feedback.
- CyberBlindspot:
- Closing the incident.
- Issuing an asset takedown request.
How to use it?
Install the pack and configure either one of the integration instances in Cortex XSOAR. For the configuration phase you will need an active API key which can be obtained in the respective platform. For any further support and questions, feel free to contact us via xsoar@ctm360.com