CyberX

Integration version: 4.0

Configure CyberX integration in Google Security Operations SOAR

For detailed instructions on how to configure an integration in Google Security Operations SOAR, see Configure integrations.

Actions

Enrich Endpoints

Description

Fetch details about the endpoints.

Parameters

N/A

Use cases

N/A

Run on

This action runs on the IP Address entity.

Action results

Entity enrichment

N/A

Insights

N/A

Script result
Script result name Value options Example
is_success True/False is_success:False
JSON result
N/A

Get Alerts

Description

Fetch a list of all alerts XSense detects.

Parameters

N/A

Use cases

N/A

Run on

This action runs on all entities.

Action results

Entity enrichment

N/A

Insights

N/A

Script result
Script result name Value options Example
alerts N/A N/A
JSON result
N/A

Get Connection for Endpoint

Description

Get a list of each device's connections.

Parameters

N/A

Use cases

N/A

Run on

This action runs on the IP Address entity.

Action results

Entity enrichment

N/A

Insights

N/A

Script result
Script result name Value options Example
is_success True/False is_success:False
JSON result
N/A

Get Device Vulnerability Report

Description

Fetch a report on vulnerabilities for each endpoint.

Parameters

N/A

Use cases

N/A

Run on

This action runs on the following entities:

  • IP Address
  • Hostname

Action results

Entity enrichment

N/A

Insights

N/A

Script result
Script result name Value options Example
is_success True/False is_success:False
JSON result
N/A

Get Events

Description

Fetch a list of reported events in the event log.

Parameters

N/A

Use cases

N/A

Run on

This action runs on the Events entity.

Action results

Entity enrichment

N/A

Insights

N/A

Script result
Script result name Value options Example
events True/False events:False
JSON result
N/A

Ping

Description

Test CyberX connectivity.

Parameters

N/A

Use cases

N/A

Run on

This action runs on all entities.

Action results

Entity enrichment

N/A

Insights

N/A

Script result
Script result name Value options Example
is_success True/False is_success:False
JSON result
N/A