-
Notifications
You must be signed in to change notification settings - Fork 11
/
Copy pathinfo.json
56 lines (56 loc) · 1.97 KB
/
info.json
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
{
"name": "phishingEmailResponse",
"version": "1.0.2",
"type": "solutionpack",
"local": true,
"label": "Phishing Email Response",
"dependencies": [
{
"name": "sOARFramework",
"type": "solutionpack",
"label": "SOAR Framework",
"minVersion": null
},
{
"name": "socSimulator",
"type": "solutionpack",
"label": "SOC Simulator",
"minVersion": null
}
],
"prerequisite": "* Configure the Exchange connector to ingest emails\n* Configure the Virustotal and Fortinet FortiSandbox connectors to enrich indicators\n* Configure the Remote Screenshot connector to capture screenshots of suspicious email-associated URLs.\n * Highly recommended to set up this connector on the agent.",
"certified": "true",
"publisher": "Fortinet",
"description": "Phishing Email Response Solution Pack is designed to provide a set of investigation and utility playbooks to respond to suspicious emails. These emails are typically reported by employees in the organization (sent to a SOC common email inbox).",
"help": "https://github.com/fortinet-fortisoar/solution-pack-phishing-email-response/blob/release/1.0.2/README.md",
"category": [],
"featured": true,
"supportInfo": "Fortinet Customer Support",
"iconLarge": null,
"postInstallConfig": null,
"recordTags": [
"Phishing"
],
"fsrMinCompatibility": "7.2.0",
"date": "2022-04-11T07:07:18+00:00",
"contents": {
"playbooks": [
{
"name": "02 - Use Case - Phishing Email Response"
}
],
"connectors": [
{
"name": "Remote Screenshot",
"apiName": "screenshot"
}
],
"recordSets": [
{
"name": "Scenario",
"apiName": "scenario",
"count": 1
}
]
}
}