Malware Playbooks
| Name | SOAR App | D3FEND | Use Case |
|---|---|---|---|
| CrowdStrike OAuth API Endpoint Analysis | CrowdStrike OAuth API | D3-NTA D3-PA D3-AI | Enrichment Malware Endpoint |
| CrowdStrike OAuth API Executable Denylisting | CrowdStrike OAuth API | D3-EDL | Response Malware Endpoint |
| CrowdStrike OAuth API File Collection | CrowdStrike OAuth API | D3-FA | Collection Malware Endpoint |
| CrowdStrike OAuth API File Eviction | CrowdStrike OAuth API | D3-FEV | Response Malware Endpoint |
| CrowdStrike OAuth API File Restore | CrowdStrike OAuth API | D3-RF | Response Malware Endpoint |
| CrowdStrike OAuth API Network Isolation | CrowdStrike OAuth API | D3-NAM | Response Malware Endpoint |
| CrowdStrike OAuth API Network Restore | CrowdStrike OAuth API | D3-RNA | Response Malware Endpoint |
| CrowdStrike OAuth API Process Termination | CrowdStrike OAuth API | D3-PT | Response Malware Endpoint |