Skip to content

fortinet-fortisoar/widget-indicator-extraction-configuration

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits
 
 
 
 
 
 
 
 
 
 

Repository files navigation

Release Information

  • Version: 1.0.0

  • Certified: Yes

  • Publisher: Fortinet

  • Compatibility: 7.6.0 and later

  • Applicable: Setup Guide Widget

Overview

Streamline your threat management with the Indicator Extraction Configuration widget in your FortiSOAR environment. This powerful tool allows you to customize the indicator extraction process by excluding indicators specific to your organization’s needs. By excluding these indicators, you ensure that corresponding Indicators of Compromise (IoCs) are excluded from data ingestion.

Key Features:

  • Custom Exclusions: Add one or more indicators of any type, unique to your organization, to the exclusion list.

  • Streamlined Threat Detection: Prevent the creation of redundant IoCs, optimizing threat analysis efficiency.

  • Enhanced Security: Tailor indicator extraction to focus on relevant threats, reducing noise and false positives.

  • Operational Efficiency: Simplify threat triage and response by focusing on pertinent data.

  • Adaptability: Easily update exclusions as your security requirements evolve.

By leveraging the Indicator Extraction Configuration widget, you empower your security operations team to proactively manage threats with precision and efficiency by excluding false positives using this widget, thereby safeguarding your organization against potential risks.

configure-indicator-extraction

Next Steps

Installation Configuration Usage