Rapid7 - Threat Command (IntSights) v3.1.9
Use Threat Command to manage alerts, CVEs, IOCs, and assets by accounts and MSSP accounts.
- Author:
- Rapid7
- Support:
- partner
agentixxsiam
Data Enrichment & Threat Intelligence
Classifiers (1)
Incident fields (14)
- Rapid7 ThreatCommand Assets
- Rapid7 ThreatCommand Attachments
- Rapid7 ThreatCommand CSV
- Rapid7 ThreatCommand Related IOCs
- Rapid7 ThreatCommand Related Threat IDs
- Rapid7 ThreatCommand Source Date
- Rapid7 ThreatCommand Source Email
- Rapid7 ThreatCommand Source Network Type
- Rapid7 ThreatCommand Source Type
- Rapid7 ThreatCommand Source URL
- Rapid7 ThreatCommand Status
- Rapid7 ThreatCommand Subtype
- Rapid7 ThreatCommand Tags
- Rapid7 ThreatCommand Takedown Status
Incident types (1)
Integrations (2)
- IntSights Deprecated
- rapid7_threat_command
Layouts (1)
Playbooks (1)
Widgets (1)
- API Call Results for Rapid7 Threat Command
README
Note: Support for this Pack was moved to Partner starting November 09, 2023. In case of any issues arise, please contact the Partner directly at support@rapid7.com.
Rapid7 Threat Command Pack
Rapid7 Threat Command content pack is designed to help users manage alerts, CVEs, IOCs, and assets by accounts and MSSP accounts.
What does this pack do?
- Alert management
- Account CVE management.
- Account asset management.
- Account and public IOC management, including the ability to create and add account IOC sources and IOCs.
- Cyber-term retrieval from the Threat Library.
- System module information retrieval.
The integration in this pack is designed to facilitate controlled changes to alerts, indicators, assets, and CVEs by accounts and MSSP accounts.