RansomwareHostWidget

Entry widget that returns the number of affectefd hosts in a Post Intrusion Ransomware incident.

python · Ransomware

Source

import demistomock as demisto  # noqa: F401
from CommonServerPython import *  # noqa: F401

incident = demisto.incidents()
data = {
    "Type": 17,
    "ContentsFormat": "number",
    "Contents": {
        "stats": int(incident[0].get("CustomFields", {}).get("ransomwareapproximatenumberofencryptedendpoints", 0)),
        "params": {
            "layout": "horizontal",
            "name": "Hosts Count",
            "sign": "",
            "colors": {"items": {"#32CD32": {"value": -1}, "#FF9000": {"value": 0}, "#EE4443": {"value": 3}}},
            "type": "above",
        },
    },
}

demisto.results(data)

README

Entry widget that returns the number of affectefd hosts in a Post Intrusion Ransomware incident.

Script Data


Name Description
Script Type python3
Tags dynamic-section
Cortex XSOAR Version 6.0.0

Used In


This script is used in the following playbooks and scripts.

  • ransomwareapproximatenumberofencryptedendpoints

Inputs


There are no inputs for this script.

Outputs


There are no outputs for this script.