Skip to content

Commit

Permalink
Update Pack: CTM360 (#37743) (#37967)
Browse files Browse the repository at this point in the history 
* Modified pack-ignore

* squash pack update commits

* Ignore `unsearchable`

* Correct ID and remove unnecessary fields

* Address requested changes

* Address requested changes 2

* Address requested changes 3

* Address requested changes 4

Unnecessary decorator



* Empty-Commit

* Downgrade docker image to latest 3.11.x

---------

Co-authored-by: S. AlQasim D. <[email protected]>
Co-authored-by: MLainer1 <[email protected]>
  • Loading branch information
@content-bot @edx-sayed-salem
@MLainer1 @sdaniel6
3 people authored and sdaniel6 committed Jan 27, 2025
1 parent 3c76bf8 commit ff2c0af
Show file tree
Hide file tree
Showing 30 changed files with 3,889 additions and 7 deletions.
11 changes: 10 additions & 1 deletion Packs/CTM360-CyberBlindspot/.pack-ignore
View file
Original file line number Diff line number Diff line change
@@ -1,5 +1,13 @@
[file:incidentfields-Course_Of_Action.json]
ignore=IF115
[file:incidentfields-Potential_Impact.json]
ignore=IF115
[file:incidentfields-Technologies.json]
ignore=IF115
[file:incidentfields-Asset_Type.json]
ignore=IF115
[file:incidentfields-Potential_Attack.json]
ignore=IF115

[known_words]
D
Expand All @@ -10,4 +18,5 @@ URLs
pytest
plugin
mappers
CyberBlindspot
CyberBlindspot
HackerView
9 changes: 8 additions & 1 deletion Packs/CTM360-CyberBlindspot/.secrets-ignore
View file
Original file line number Diff line number Diff line change
@@ -1,2 +1,9 @@
[email protected]
https://cbs.ctm360.com
https://cbs.ctm360.com
https://hackerview.ctm360.com
https://platform.ctm360.com
154.134.143.229
229.13.147.132
173.53.166.40
10.161.216.126
242.230.133.23
76 changes: 76 additions & 0 deletions Packs/CTM360-CyberBlindspot/Classifiers/classifier-mapper-incoming-CTM360-HackerView.json
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,76 @@
{
"description": "Maps incoming CTM360 HackerView incidents.",
"feed": false,
"id": "CTM360-HackerView - Incoming Mapper",
"mapping": {
"HackerView Incident": {
"dontMapEventToLabels": false,
"internalMapping": {
"Affected Hosts": {
"simple": "CustomFields.host"
},
"CTM360 HackerView Asset Type": {
"simple": "CustomFields.asset_type"
},
"CTM360 HackerView Potential Attack Types": {
"simple": "CustomFields.potential_attack_type"
},
"CTM360 HackerView Potential Impact": {
"simple": "CustomFields.potential_impact"
},
"CTM360 HackerView Technologies": {
"simple": "CustomFields.technologies"
},
"CVE ID": {
"simple": "CustomFields.cve_id"
},
"Categories": {
"simple": "CustomFields.issue_category"
},
"External Confidence": {
"simple": "CustomFields.confidence"
},
"External Link": {
"simple": "CustomFields.hackerview_link"
},
"External Status": {
"simple": "external_status"
},
"dbotMirrorDirection": {
"simple": "xsoar_mirroring.mirror_direction"
},
"dbotMirrorId": {
"simple": "xsoar_mirroring.mirror_id"
},
"dbotMirrorInstance": {
"simple": "xsoar_mirroring.mirror_instance"
},
"name": {
"complex": {
"filters": [],
"root": "name",
"transformers": []
}
},
"occurred": {
"complex": {
"filters": [],
"root": "occurred",
"transformers": []
}
},
"severity": {
"complex": {
"filters": [],
"root": "severity",
"transformers": []
}
}
}
}
},
"name": "CTM360-HackerView - Incoming Mapper",
"type": "mapping-incoming",
"version": -1,
"fromVersion": "6.10.0"
}
Loading

0 comments on commit ff2c0af

Please sign in to comment.