From 91d8e8e65f9c719992b40e569c18f76d4b8effdb Mon Sep 17 00:00:00 2001 From: squioc Date: Fri, 1 Dec 2023 08:16:17 +0000 Subject: [PATCH] Refresh automation library documentation --- .../automate/library/check-point.md | 35 ++++++++++++++++++ docs/assets/playbooks/library/check-point.png | Bin 0 -> 9410 bytes mkdocs.yml | 2 + 3 files changed, 37 insertions(+) create mode 100644 _shared_content/automate/library/check-point.md create mode 100644 docs/assets/playbooks/library/check-point.png diff --git a/_shared_content/automate/library/check-point.md b/_shared_content/automate/library/check-point.md new file mode 100644 index 0000000000..4c6e35efcb --- /dev/null +++ b/_shared_content/automate/library/check-point.md @@ -0,0 +1,35 @@ +# Check Point + +![Check Point](/assets/playbooks/library/check-point.png){ align=right width=150 } + +Check Point Harmony is the industry’s first unified security solution for users devices and access. + +## Configuration + +| Name | Type | Description | +| --------- | ------- | --------------------------- | +| `client_id` | `string` | Client Id to interact with Checkpoint API | +| `secret_key` | `string` | Secret key to work with Checkpoint API | +| `authentication_url` | `string` | Authentication url to authenticate Checkpoint API | +| `base_url` | `string` | Base url to interact with Checkpoint API | + +## Triggers + +### [BETA] Collect Checkpoint Harmony events + +Trigger playbook to get Checkpoint Harmony events + +**Arguments** + +| Name | Type | Description | +| --------- | ------- | --------------------------- | +| `ratelimit_per_minute` | `integer` | Maximum number of requests per minute | +| `intake_server` | `string` | Server of the intake server (e.g. 'https://intake.sekoia.io') | +| `intake_key` | `string` | Intake key to use when sending events | +| `chunk_size` | `integer` | The max size of chunks for the batch processing | +| `frequency` | `integer` | Batch frequency in seconds | + + +## Extra + +Module **`Check Point` v1.1.6** \ No newline at end of file diff --git a/docs/assets/playbooks/library/check-point.png b/docs/assets/playbooks/library/check-point.png new file mode 100644 index 0000000000000000000000000000000000000000..2c1a171cb15986760a77c8d892f3c7e27e67495a GIT binary patch literal 9410 zcmbVSWmg0(_dQrw+Ii`xR1_x^)> zKO{NlImyhKWM-1gOynmOIUG!KOaK6YqaZJ>{yIYcYv`!2y*RDX1pq)FsUR((>6vqq z>tmuh+w#);C7&lbq>LFaH6a3%cJ`rMtE%~`RlnsBuU_EOQ;XKw$*fqNq;yCij9C+( zz`nc1+W^ImL&5IoyMA}8j!lhYP0f4FJdDi}$u*vDZ+%w9B@@6&i#*>Za(I%T?y-{G z=JYZ%&yM|WjC?rEtZaD6`J^WiYQCCgZ}SetZdOa z8m16n{KseU6P+?FcSn1Q%pC8Rr}-s`;i7wFQ3fos)EVtqqT}bc(#BL*rsuh@I4tgs zQbc(kym~aDg_?Eww&)!+tMRas+I-qo4vSH`8F#sZv|tqNIVSQfSI~ZzMFLU`i}Me| zz~Ctpx#J_;Y7>1~P()tg_l=WL0*w=|@)j($tP6t@wwT-gy~X!8UOv%&2^J zKqCgWQZ~>+aI()zw~y4{gFSdLl3t+$@l(@l$+1R^Eu3InqY>YF_YrJUCWA2oqoVYs zvMy)>!z^4x37*~N{-(a{xqZ(1`^o@ZK~+aPDY$rNvXu|*a-BUlf)uMsVKELvb8a>k zk$VIU#F5F-HN-SU@AYP)+j;G5`gan}wEp7KzUf6x+zb^*%$@bVn?o_Wn=b!>k}MT< zeCL86cRkI-GoCMa(%;m5RRN>wuFj#W&F|P^3qG(7=(_az9{#VQAytP7eqINYj0Xvt zs6hOrBAJsJEMyKs(yW}T0-pH{Ul{?GSvs-8%y zJq_(#q>ZJV^^6gd4gc;RFg$&b*e63Z3QL+7iUN~7f=CrdD(#p2pq0+Pso?VjB zFc1kR*y+ozC0;5TxfDVn$~M>hQ?GF@pn&z@0{}bWc#XmpKQ!!3%rL3s8dd@GD;O9U zZDrW%B0K3!MCko)Na|I5vkvM?452tA(>?n_LnYlCXxq~FxDxzHx){07-$wnA&~@Lq zQld#om$*>>!4is-l)xIIL(PI{No$h3Qi=`=tbp7g&JuEJ=r;YHeK;CAlyV_s1=|NW zv{4-)oxyQM_zN%CP3K3^vcx|{#)(A&>D}=oa|ilxs|J?@ZyIzp0=dHSGH0|!BnmzT z$I%i0g3nsU8(j|EBCpRNqdpRBAa9mTzmyX}zfSRTr27%~rS=ooWn-!_!_d3nI4Kk>Ul6^z zi+Z&~2eB)=M4!o$QG-Pc@A0B8eM5y=A9_5zZ`8xkMDKP3E3kQsgg1+xQnvXp9Ks6#c ze)hYPzD0_H6sz9;X5lHTh2zogXvKn1&r*}(yB`~>vV-FwSnj^&Fz~!e4y{6tY|KpN zJuiN)QsC`R*BIixo&b6<^9>xeZxcBOZNLjTa1=b~T~y;gG!TIQPe|cBiz6pJzCy1) z59}W~N5cBYnD0}tA{@TCxq+#=F1nZJuTe>Y#+()Hfzyk?#4B)RsOAcq z)3NoI_QC(t?JcSmjng4j{O9XG1+)uB4K^W2UT-m+-||c_U38yHwEEhw^I+R!eeUrC zBO`2l#h+k|K#{_?t;_GR;fTn0F|8&u;PLoaYnJJ^h_p?KyJ3>CkFP-T5%4*sO4voF zW(s_k`%#*N$0-OaNAmGz;?k_%YOTjn&uhw;cE>sMtv^}}lLS0`I(On*Gw0r&TUn-t zPBmj;@F;+h<;8N*T&M2(cfj`U>|hCd2RfAGyAwj-AiN`ey`Ax$Jz}7V-3DC0SO`4} zeLy?NbCo4fS!YrKlVHhRCIbu zC{CG2TUgTU10vtmf)L8!o<1Z9eXV5CJXo;3o^%Tvi zi|#rHwZ$_kx9e@$np1eyq~}rUP68zlAaScMAP_w}&@cFh8&^1~!FL>%aC{u31ESge z?Em(M^;dOLt))~A3Dze&!ci#pP0<50 z2W%1{*7AyFCLsXYH6)%83w<&YwrEaLG8V zZ?{H7_T_RG`@^8EIkS=@GcF7X@pIvxPkmk8M+rOr{iL;?Ozjaa=$G$Pfr8uT`ED4} z^hpt4U+`rp$W8oLuw5=6<>Tdb(cq%Wk1ubh5}7+qr&TAk&I!1R*!sHW=fP3{;K}@u ze}7DEXGLC6tBK?o4z?9PPKhH#FZqmuQ;0C!*GZ^1@wUK5O7vAgaP5&_ff%h2VZ_{- zwCgwXKXi;d(%k17#Kv->yq&p0kMIZ{O%N_IHUPh}@XCZv^XSU|oap`5%k<@PS zPWiBVXPziA8?eRvFg4T4009+-blWM|^$0iOrblOH{N}DgK&8i^!XkzGnT+Scr(HS7 z#NXqk7Y~jC?9F|2a*6!(z+YWn&L=H$&c~1r1>H0k*bItoE^IEn5Zj-thD`rh$WY>@ zFZg*>}Fn?1Qb=wdTb_a(>89? z5!tVxP8})>A~z8}8mjn~O{nSvE z=lh4+PBmv!4%=ceg8x{$*_32N@yJ4=j+Ensd1>eDZ#;*AEnQQ!gFju+%Wyh1Vu;K; zy4TbG=Y2XbiU92tqZHawAf9Qre@|3<^aZun<_J7hDx2}{bo@?AMS)_fMi}3A<>aw4 zCxS`b!0TDP#V#=z(?Nf)ajMM(>`AB7zk|s55PN9KMWE_CbLRQ_hj`uEL*F%d>#U*2 zQsZn29{u|<JID$B0XRiC}dBy{IG{O3y;Dcur7g;DOxA!b&*0DUjEB z{FT9cFWeWG$pd60bSEb|F^}Qd|6&6V$53=Ml98#AIRCW|k1KmW;znQ#$4|8Hyou*8 z6pbrXj?Js{w+!K!y|J*{e@X5C!6{LNiRB!D>+Rpiz=_@u=+cMSeU%!-3qA5SJ`qKV znZuP9;O$%aCsueZER}3$?n=*CwLlONIXFuyph0{3L+C&a1igPxifZ(}POrfASbyQh z10E+w3>!*Zxx~{IHu^r>gR zwau-E3|72%RPnw4qD7yY<@#fcfJf95XE;h274)P@i4-(~lXN3c&ZL@meRj*PBN4Q@ z?(|t}A<5|dLQ2y@CEhM>V-;*cy4P52)gZO_rs_2T*u}kI*tt9TOoQVcm5Q-^8&YJc zz$T;k>1qT+b*r){CTlwSF!9OF{*aJEh){fwY*EbbQ4^Dyh3AXof3n)hOQL2+cO0)KG(W9=Ft)4*~?TvD#_4BNXW> z5jq>Wri&pD2vugUZS(ln1;e1HyKv!8LtRx@AvwTvEuF`94pE#w6U#XZj}c z|7KX-rJ|Q!R?nb2NU$8m?%jLB2H<*-#nGdnAvUOb2gd4NH2+H|<2+~m+!N!w_*>Db z)0SA%D1xDfk787qW?{TZVM!yQCp(NhWPxA!PJDE4_b8z>&&fUsHvaPhFKAL}8oc}8 ze)kqwLG`Y4M@5@k>&O)IgITJgPiV&S&3{XKUiV$j`_T~2+4>J70aUi6=ndu`#SrDo z-13=|d)BPQYpdG3loaXwbxjK9VWbImAqWq?08FYFYfY#_hUq zM}hLYeNfD<8E~Gs=uwf66@j0_lx|hU5j!ew|P7*ZoVQ^<@Qr(OC%rP~Sq#Io#<$=m26UBY1=_+saNN^G>6R1#|O+xx7y!EdM~yE|8G=|-NoNzJW+ zpBC48kaMW0vhdpSPy z^bF>>)>>MK;+1yU+O3?x(2Io%UI+!N`+&R3zb$|5BU$Qn3> z%|1QkqjPu{4l+u_^GirfJ#^bgp+{Mj_G4tlSN^+*h=)Q=6|)KkAnTQY8l1h!zZ1lg z&K1+CK<@7FRUIBDW zg^tJhOkcUa>F#Fy9jP{|Wj=2EXIo_J(oe^b;#tgH05>7@AnX2pAc3bC`ga4Zc>3fM zT!m$E;oMoqM~vxM>m0CRt+3jt3N_JtW`ZZyR7yB|Nf(T?~HvYujLvoKZKj_f6cN=yucvhJHaderMvJmifuCQv=mb{;j!!VE20W)5G>hAAFb zHIGe><4$ZX5zyy}oBrr=>q7V^*SKQdOqss$&-`v8jImJ_L#!upQ{@RRUZ}7d9<#n% zRK7{pYS087w{qAT(u{l}AB|+L-yT!))NQ$uQng^n@I&F|_V&C$v<1W35flU^XRR}q zc2Hu!2n@DlrJQ8Kq#1;%>mBLSXsh(p=2}7{oda6MxFHGZu^aTEw|&}NN+8U2C@&Y*_&|bfr?24EjUOzvKmUH(4PT6GH($XY|92HW0-<%gD&Oq-O6M|#LBcFahV!(G)>D`%=YW%3(9>8{wYhJ z%*vz06>P@1i?3)zK56S@Uc0n11q)ViS`j$M$fdr`4%lN3^1I%@ksRUuqT zAZ4qk7w9510LoyvGkWjqHTOwgea8s2Un+qCuxcTBDpe4tKt1&l`jMWfLAUBThC&dg zq?bbph_F;ak&0o`?6fNz;OS4P%WKMI@%RWu=5t=EJ?4QWty=U`3f^REit;JABu2es z{E&xS96{eP$Y#9OTAl2YS@!%8h@tqc9G&U0T56A8%J4!!vt1jwFy51h)RZ_lC<9mY zQl2&LzSyfU89Q|F2SOE8!c4F8?*!QRk;|5GkbJ7_x&UF?+jdt!axI0m#To^e0Gi%j9CC$l>< zWK58T)=i=O(*q%!DQND7JEEpsqyfN~hwdSblU2HVh-q^)KDz4VySD^Yy&f=>&{*N{ z*t?SVJ-3^WvKsq6*mK?|>43{8tTXK~!(jZ?QcQ25Jsh-vb9@#n8X)Qe0UoKi(Dw5e zKSR%vsR{PggYfy0jU5n!6itU8@tzM)aXs~_blVG0qW&8;i4(t%NT_Sfxip(n;TlS21BDfqTqC1B}7?oLV$HX%eL~UI5lsbJ1Au$2P9RISnW-H_mq)^@bT&tfeyFR zWftYBs)S|%{o=V_VN_^LRGo}$r=5u&bl6Sf$A40KnOw3AS(j>-`*R+ut7t9IAp~JJ zIx*H2Gp1cz8-HnS>-8Ve2h`q%Ip6j)LIi2bg2}oW=OjXox-W*4ey3tXm<;P&pEEpM zeK=6gbB`Q8DZVfkK#Ksa!*n+_d3Wmc`}-t{U-ssM?pfaZ5*&~c3oCf~y#%P|oXr>a zBM?h2f(ZR|Ps`4e4iN(NO(B~2n-Ax`al5?3ED1>BNq1-f>uybmNr_`6f-*;duxFd` zHV0*FIh7$5<+YV7LLO&LX8t8ABnZ8<%c@@%^^N6GIC!{X0kRgUN6B?lGYKOY!YlqU zw-RNj&B~NL@KIgTU))C=23$y-mcHCrCL5`hU^ab?KMqW>mVT9WcQq_NM=VE9_|i)GwtD29bK-~zziquI49!2*cPf$H)KwK^Go!3lsL`naFm2U0>nx-KKkGXS-sv|69&Te=+^9e>tVLA> zfYDP@-FjG~RCgQPhr;7-$(}g=HzxCsW<%#m$&rWiub40Wo@ivbbqv`ac6r$&XDPFw!E?`-=RVkH;^(bVbP? z`lfh8ukw3G4BPcX!aBAK>zoWTG7_Lf`_F<{I6W!=6EN_JJb{-5 ze+V!VVawrvDpbPn3FT#3^#NTv4*!MXRdek0hsc5ePFI6itx3OHU`E5(B?4xPSmFz; z(X`{VTVJM;dWN;vxc?C_9o&qyU@5 zn*c;ly?exg1ljX7J;m0k5h@F!qupJ0f<&4?YWisT3J3;4Zhl+EgM^Is3kf&S(h zlX@b3PP+N_wHCd`1W-_2YeyBts`VA)Lra5MgZg3nmkcgCA?$)rFZVwn5pQwPw=5Fx z5~I3fMp%lSdV>4kb>h#!*?*;T{CN2lQ&G{89h6_S(6OUkzOZ@@hYDCID0Guu?@(&= z4ziQuwiVwQ?!rh-vw~A0No8?0nVk&T3vkA(V1z&}mleE>^I=VQY2Tlfs+@6a4n$S6 zlas!Pk+cyb_)gB!EaslC$%7x#SE-ur(DueIhamMKaKcWg$!jXeAPHm*x_igMF5XnL zl?K%G<@7S03y4IJ`!)KBEw2Lhi~TJIXH@grbDJKU)-m0{lTNXbN-b+ujef45>vJ;6 zD}RFcKenO2AOP~mMsx0G!`U+7f*q1Xvz7rKasa)_oA?j|_2RBel?}&Ike7*)@@#xl z47>GCtV!TRDv!b`3iO~z2qWNV_RHx})2t^61B9dL*G3V?w6#SFC^`&j%B-`vM5`ip zbdJqI_)WpuOd4r?>X`G7rBPKGBMel)n9e%96`=TOwOR!fHBvj~#An2c5~2;0^C3)%K>n>XebpMlP~R%X8~-+0^$f8K1CDm*|3u>YRK62s zeqwx&@@koUSb0p7B^y%NJ%m$w%T_DiaZ&lCW=Uu`9gN)IiZt1m5M){;#Z6r19=1|X zMu?JhPiWpzeD_y{?WCzMW?qYuG>-pEMk^pKnDf-O*fb(r>xtc~;lk8e`o7bG$cMrt z=v5X>5tDy%ZM~j@%B(k^4LK&ib#JG0*!u3acVu%rCXj)=I7kbcOo0*aVG_I~U!NW% zcU>Kk%Q5aKRRMnW`B~almn|epRnQ8WRd#rmt zUag?nVGSz@l1|#yYr#Umxy1i8cd6;e?)AeZlgnkmz#E|e*kprjGx={X3Bg`Nv(A=O z>q@y0$u6Et+@X0no$`9}IM{|=AM~nMug~B*iKuUV3&zB1!D$t5IgtXBXw1bZ$Xq`6 zI;zRiVtzZ&-IG9iujV(oejZzb6nWQY_kfpjargV;8ljg7QxOFCq%Gk1z5kA~uMPn~ z;MWl(c9(Z}-QcFfw4-MJhxeoGJ&DBu4G|6*nxKWvY*MdbUCz3t!KfEND4l{V`t{=U z6JEd3Q&+1G4fD{_#A{@Jz(?00T^S?F{M6$e=fYDam~ZGCy83Ud?$JE@Vx-Sya%4Nd z>nU|{%sPggv)7Wc*b|6NgE5~n4>jI2j|ft8qEjL%IyAE{X}K)rx{Sx*%~((qqMd{! z={R^Vka}$y(x)_j#YAng`4F=?{6t690Ls{iGUlEf+PK8jVh1C5j2Q zIQzfeoNMlRJ{B->k_leCcgFL^xLJ`SCK+^0b0j!+s#P5y2j>IeqWDxp8%<+&BydRG z-2k}vjy`3U;|>RT0&x=!Cw)ChyEC-pC|y|~KI7lAr0OKm5Fn#S#erRsakxTk2dOVD zN(R{P+i24^fm?|p!wLJ(`4^r8-3ttk4EA#Pm9n+k%!GAr zoFT*g^w%_LF zOX>vk8Ka+3g{EoymwKfoj_2Mv zdJ`h5)2J=ex-7`|(v_Pz`%d3pYw_3e4LQv`&uy6jyUs!7);Q~`#Vb2E|Sb{w}A@^xM36m3oQ|g5^c7W82Fjg1PCz^ zM6wD=v@)FpEMB90(N$-@N3GZWPsC4nW)tzdpJExYud+XL#|~jNoA74wP6kieOoOpx mixiMJNMjjs{y*Tx3xI1p_x7|`hVr#G37{aOB3&zK68t|CX$}Pd literal 0 HcmV?d00001 diff --git a/mkdocs.yml b/mkdocs.yml index f7c434e783..3ceb409faa 100644 --- a/mkdocs.yml +++ b/mkdocs.yml @@ -258,6 +258,7 @@ nav: - BinaryEdge's API: xdr/features/automate/library/binaryedge-s-api.md - Censys: xdr/features/automate/library/censys.md - Certificate Transparency: xdr/features/automate/library/certificate-transparency.md + - Check Point: xdr/features/automate/library/check-point.md - CrowdStrike: xdr/features/automate/library/crowdstrike.md - CrowdStrike Falcon: xdr/features/automate/library/crowdstrike-falcon.md - Cybereason: xdr/features/automate/library/cybereason.md @@ -437,6 +438,7 @@ nav: - BinaryEdge's API: tip/features/automate/library/binaryedge-s-api.md - Censys: tip/features/automate/library/censys.md - Certificate Transparency: tip/features/automate/library/certificate-transparency.md + - Check Point: tip/features/automate/library/check-point.md - CrowdStrike: tip/features/automate/library/crowdstrike.md - CrowdStrike Falcon: tip/features/automate/library/crowdstrike-falcon.md - Cybereason: tip/features/automate/library/cybereason.md