Playbook: Risk Notable Enrich

Description

This playbook collects the available Indicator data types within the event as well as available investigative playbooks. It will launch any playbooks that meet the filtered criteria.

Type: Investigation Date: 2021-10-22 Author: Kelby Shelton, Splunk ID: 010edc96-ff2b-48b0-9f6f-43da3783fd63

Apps:

Associated Detections

How To Implement

For detailed implementation see https://docs.splunk.com/Documentation/ESSOC/latest/user/Useplaybookpack

Explore Playbook

Required fields

Reference

https://docs.splunk.com/Documentation/ESSOC/latest/user/Useplaybookpack#Call_child_playbooks_with_the_dynamic_playbook_system

source | version: 1