From 14b89a86233185382640a8f16d3d9d818acaf281 Mon Sep 17 00:00:00 2001
From: content-bot <55035720+content-bot@users.noreply.github.com>
Date: Wed, 24 Apr 2024 12:40:06 +0300
Subject: [PATCH] [ASM] XPANDR- 7915 - Add the *SSHTerrapinAttack* attack
 surface rule. (#34091)

* [ASM] XPANDR- 7915 - Add the *SSHTerrapinAttack* attack surface rule. (#34087)

* added terrapin

* RN

* Update .pack-ignore

* Fixed RNs

---------

Co-authored-by: johnnywilkes <32227961+johnnywilkes@users.noreply.github.com>
Co-authored-by: anas-yousef <44998563+anas-yousef@users.noreply.github.com>
---
 Packs/CortexAttackSurfaceManagement/.pack-ignore            | 3 ++-
 .../Playbooks/Cortex_ASM_-_Remediation_Path_Rules.yml       | 2 +-
 Packs/CortexAttackSurfaceManagement/ReleaseNotes/1_7_34.md  | 6 ++++++
 Packs/CortexAttackSurfaceManagement/pack_metadata.json      | 2 +-
 4 files changed, 10 insertions(+), 3 deletions(-)
 create mode 100644 Packs/CortexAttackSurfaceManagement/ReleaseNotes/1_7_34.md

diff --git a/Packs/CortexAttackSurfaceManagement/.pack-ignore b/Packs/CortexAttackSurfaceManagement/.pack-ignore
index 7a96068ac239..ca25306a4372 100644
--- a/Packs/CortexAttackSurfaceManagement/.pack-ignore
+++ b/Packs/CortexAttackSurfaceManagement/.pack-ignore
@@ -47,4 +47,5 @@ NMAP
 ml
 vpc
 Prisma
-ITSM
\ No newline at end of file
+ITSM
+Terrapin
diff --git a/Packs/CortexAttackSurfaceManagement/Playbooks/Cortex_ASM_-_Remediation_Path_Rules.yml b/Packs/CortexAttackSurfaceManagement/Playbooks/Cortex_ASM_-_Remediation_Path_Rules.yml
index e839860aa616..f774bea1e9ac 100644
--- a/Packs/CortexAttackSurfaceManagement/Playbooks/Cortex_ASM_-_Remediation_Path_Rules.yml
+++ b/Packs/CortexAttackSurfaceManagement/Playbooks/Cortex_ASM_-_Remediation_Path_Rules.yml
@@ -1746,7 +1746,7 @@ tasks:
       key:
         simple: remediationattacksurfacerules
       value:
-        simple: RdpServer,InsecureOpenSSH,TelnetServer,UnencryptedFtpServer,OpenSSH,SshServer,SnmpServer,MysqlServer,MongoServer,PostgresServer,ElasticsearchServer
+        simple: RdpServer,InsecureOpenSSH,TelnetServer,UnencryptedFtpServer,OpenSSH,SshServer,SnmpServer,MysqlServer,MongoServer,PostgresServer,ElasticsearchServer,SSHTerrapinAttack
     separatecontext: false
     continueonerrortype: ""
     view: |-
diff --git a/Packs/CortexAttackSurfaceManagement/ReleaseNotes/1_7_34.md b/Packs/CortexAttackSurfaceManagement/ReleaseNotes/1_7_34.md
new file mode 100644
index 000000000000..23603766883b
--- /dev/null
+++ b/Packs/CortexAttackSurfaceManagement/ReleaseNotes/1_7_34.md
@@ -0,0 +1,6 @@
+
+#### Playbooks
+
+##### Cortex ASM - Remediation Path Rules
+
+Updated the playbook to include the *SSHTerrapinAttack* attack surface rule.
diff --git a/Packs/CortexAttackSurfaceManagement/pack_metadata.json b/Packs/CortexAttackSurfaceManagement/pack_metadata.json
index a6a4d083fb8f..750ee4c14a57 100644
--- a/Packs/CortexAttackSurfaceManagement/pack_metadata.json
+++ b/Packs/CortexAttackSurfaceManagement/pack_metadata.json
@@ -2,7 +2,7 @@
     "name": "Cortex Attack Surface Management",
     "description": "Content for working with Attack Surface Management (ASM).",
     "support": "xsoar",
-    "currentVersion": "1.7.33",
+    "currentVersion": "1.7.34",
     "author": "Cortex XSOAR",
     "url": "https://www.paloaltonetworks.com/cortex",
     "email": "",