WildFire
Integration version: 5.0
Configure WildFire to work with Google Security Operations SOAR
To obtain the API Key for your WildFire public cloud, please complete following steps:
- Log in to the WildFire portal.
- Select Account on the navigation bar at the top of the page.
- Your API key(s) is under My WildFire API Keys.
Configure WildFire integration in Google Security Operations SOAR
For detailed instructions on how to configure an integration in Google Security Operations SOAR, see Configure integrations.
Actions
Detonate File
Description
Upload a file to WildFire and retrieve a report.
Parameters
| Parameter | Type | Default Value | Description |
|---|---|---|---|
| File Paths | String | N/A | N/A |
Run On
This action runs on all entities.
Action Results
Entity Enrichment
N/A
Insights
N/A
Script Result
| Script Result Name | Value Options | Example |
|---|---|---|
| success | True/False | success:False |
JSON Result
N/A
Get File
Description
Download and save a sample from WildFire.
Parameters
N/A
Run On
This action runs on the Filehash entities.
Action Results
Entity Enrichment
N/A
Insights
N/A
Script Result
| Script Result Name | Value Options | Example |
|---|---|---|
| success | True/False | success:False |
JSON Result
N/A
Get Pcap
Description
Download and save the PCAP file of a sample from WildFire.
Parameters
N/A
Run On
This action runs on the Filehash entities.
Action Results
Entity Enrichment
N/A
Insights
N/A
Script Result
| Script Result Name | Value Options | Example |
|---|---|---|
| success | True/False | success:False |
JSON Result
N/A
Get Report
Description
Get a detonation report from WildFire.
Parameters
N/A
Run On
This action runs on the Filehash entities.
Action Results
Entity Enrichment
N/A
Insights
N/A
Script Result
| Script Result Name | Value Options | Example |
|---|---|---|
| success | True/False | success:False |
JSON Result
N/A
Ping
Description
Test connectivity to Wildfire.
Parameters
N/A
Run On
This action runs on all entities.
Action Results
Entity Enrichment
N/A
Insights
N/A
Script Result
| Script Result Name | Value Options | Example |
|---|---|---|
| success | True/False | success:False |
JSON Result
N/A