Oversight on the README format for the deploy to Azure process.
This commit is contained in:
Родитель
8200703950
Коммит
3f157ee744
|
@ -3,9 +3,9 @@ author: Brandon Dixon, RiskIQ
|
||||||
|
|
||||||
This playbook uses the RiskIQ Intelligence connector to automatically enrich incidents generated by Sentinel with recent passive DNS records. You need a valid subscription in order to use the connector and playbook. To learn more about the service and request a trial key, see the [API documentation](https://api.riskiq.net/api/concepts.html).
|
This playbook uses the RiskIQ Intelligence connector to automatically enrich incidents generated by Sentinel with recent passive DNS records. You need a valid subscription in order to use the connector and playbook. To learn more about the service and request a trial key, see the [API documentation](https://api.riskiq.net/api/concepts.html).
|
||||||
|
|
||||||
<a href="https://portal.azure.com/#create/Microsoft.Template/uri/https%3A%2F%2Fraw.githubusercontent.com%2FAzure%2FAzure-Sentinel%2Fmaster%2FPlaybooks%2FSend-UrlReport%2Fazuredeploy.json" target="_blank">
|
<a href="https://portal.azure.com/#create/Microsoft.Template/uri/https%3A%2F%2Fraw.githubusercontent.com%2FAzure%2FAzure-Sentinel%2Fmaster%2FPlaybooks%2FEnrich-SentinelIncident-RiskIQ-Host-Passive-DNS%2Fazuredeploy.json" target="_blank">
|
||||||
<img src="https://aka.ms/deploytoazurebutton""/>
|
<img src="https://aka.ms/deploytoazurebutton""/>
|
||||||
</a>
|
</a>
|
||||||
<a href="https://portal.azure.us/#create/Microsoft.Template/uri/https%3A%2F%2Fraw.githubusercontent.com%2FAzure%2FAzure-Sentinel%2Fmaster%2FPlaybooks%2FSend-UrlReport%2Fazuredeploy.json" target="_blank">
|
<a href="https://portal.azure.us/#create/Microsoft.Template/uri/https%3A%2F%2Fraw.githubusercontent.com%2FAzure%2FAzure-Sentinel%2Fmaster%2FPlaybooks%2FEnrich-SentinelIncident-RiskIQ-Host-Passive-DNS%2Fazuredeploy.json" target="_blank">
|
||||||
<img src="https://raw.githubusercontent.com/Azure/azure-quickstart-templates/master/1-CONTRIBUTION-GUIDE/images/deploytoazuregov.png"/>
|
<img src="https://raw.githubusercontent.com/Azure/azure-quickstart-templates/master/1-CONTRIBUTION-GUIDE/images/deploytoazuregov.png"/>
|
||||||
</a>
|
</a>
|
|
@ -3,9 +3,9 @@ author: Brandon Dixon, RiskIQ
|
||||||
|
|
||||||
This playbook uses the RiskIQ Intelligence connector to automatically enrich incidents generated by Sentinel with SSL certificates. You need a valid subscription in order to use the connector and playbook. To learn more about the service and request a trial key, see the [API documentation](https://api.riskiq.net/api/concepts.html).
|
This playbook uses the RiskIQ Intelligence connector to automatically enrich incidents generated by Sentinel with SSL certificates. You need a valid subscription in order to use the connector and playbook. To learn more about the service and request a trial key, see the [API documentation](https://api.riskiq.net/api/concepts.html).
|
||||||
|
|
||||||
<a href="https://portal.azure.com/#create/Microsoft.Template/uri/https%3A%2F%2Fraw.githubusercontent.com%2FAzure%2FAzure-Sentinel%2Fmaster%2FPlaybooks%2FSend-UrlReport%2Fazuredeploy.json" target="_blank">
|
<a href="https://portal.azure.com/#create/Microsoft.Template/uri/https%3A%2F%2Fraw.githubusercontent.com%2FAzure%2FAzure-Sentinel%2Fmaster%2FPlaybooks%2FEnrich-SentinelIncident-RiskIQ-Host-SSL-Certificate%2Fazuredeploy.json" target="_blank">
|
||||||
<img src="https://aka.ms/deploytoazurebutton""/>
|
<img src="https://aka.ms/deploytoazurebutton""/>
|
||||||
</a>
|
</a>
|
||||||
<a href="https://portal.azure.us/#create/Microsoft.Template/uri/https%3A%2F%2Fraw.githubusercontent.com%2FAzure%2FAzure-Sentinel%2Fmaster%2FPlaybooks%2FSend-UrlReport%2Fazuredeploy.json" target="_blank">
|
<a href="https://portal.azure.us/#create/Microsoft.Template/uri/https%3A%2F%2Fraw.githubusercontent.com%2FAzure%2FAzure-Sentinel%2Fmaster%2FPlaybooks%2FEnrich-SentinelIncident-RiskIQ-Host-SSL-Certificate%2Fazuredeploy.json" target="_blank">
|
||||||
<img src="https://raw.githubusercontent.com/Azure/azure-quickstart-templates/master/1-CONTRIBUTION-GUIDE/images/deploytoazuregov.png"/>
|
<img src="https://raw.githubusercontent.com/Azure/azure-quickstart-templates/master/1-CONTRIBUTION-GUIDE/images/deploytoazuregov.png"/>
|
||||||
</a>
|
</a>
|
|
@ -1,11 +1,11 @@
|
||||||
# Enrich-SentinelIncident-RiskIQ-Full
|
# Enrich-SentinelIncident-RiskIQ-Host-WHOIS
|
||||||
author: Brandon Dixon, RiskIQ
|
author: Brandon Dixon, RiskIQ
|
||||||
|
|
||||||
This playbook uses the RiskIQ Intelligence connector to automatically enrich incidents generated by Sentinel. You need a valid subscription in order to use the connector and playbook. To learn more about the service and request a trial key, see the [API documentation](https://api.riskiq.net/api/concepts.html).
|
This playbook uses the RiskIQ Intelligence connector to automatically enrich incidents generated by Sentinel. You need a valid subscription in order to use the connector and playbook. To learn more about the service and request a trial key, see the [API documentation](https://api.riskiq.net/api/concepts.html).
|
||||||
|
|
||||||
<a href="https://portal.azure.com/#create/Microsoft.Template/uri/https%3A%2F%2Fraw.githubusercontent.com%2FAzure%2FAzure-Sentinel%2Fmaster%2FPlaybooks%2FSend-UrlReport%2Fazuredeploy.json" target="_blank">
|
<a href="https://portal.azure.com/#create/Microsoft.Template/uri/https%3A%2F%2Fraw.githubusercontent.com%2FAzure%2FAzure-Sentinel%2Fmaster%2FPlaybooks%2FEnrich-SentinelIncident-RiskIQ-Host-WHOIS%2Fazuredeploy.json" target="_blank">
|
||||||
<img src="https://aka.ms/deploytoazurebutton""/>
|
<img src="https://aka.ms/deploytoazurebutton""/>
|
||||||
</a>
|
</a>
|
||||||
<a href="https://portal.azure.us/#create/Microsoft.Template/uri/https%3A%2F%2Fraw.githubusercontent.com%2FAzure%2FAzure-Sentinel%2Fmaster%2FPlaybooks%2FSend-UrlReport%2Fazuredeploy.json" target="_blank">
|
<a href="https://portal.azure.us/#create/Microsoft.Template/uri/https%3A%2F%2Fraw.githubusercontent.com%2FAzure%2FAzure-Sentinel%2Fmaster%2FPlaybooks%2FEnrich-SentinelIncident-RiskIQ-Host-WHOIS%2Fazuredeploy.json" target="_blank">
|
||||||
<img src="https://raw.githubusercontent.com/Azure/azure-quickstart-templates/master/1-CONTRIBUTION-GUIDE/images/deploytoazuregov.png"/>
|
<img src="https://raw.githubusercontent.com/Azure/azure-quickstart-templates/master/1-CONTRIBUTION-GUIDE/images/deploytoazuregov.png"/>
|
||||||
</a>
|
</a>
|
|
@ -1,11 +1,11 @@
|
||||||
# Enrich-SentinelIncident-RiskIQ-Host-Passive-DNS
|
# Enrich-SentinelIncident-RiskIQ-IP-Passive-DNS
|
||||||
author: Brandon Dixon, RiskIQ
|
author: Brandon Dixon, RiskIQ
|
||||||
|
|
||||||
This playbook uses the RiskIQ Intelligence connector to automatically enrich incidents generated by Sentinel with recent passive DNS records. You need a valid subscription in order to use the connector and playbook. To learn more about the service and request a trial key, see the [API documentation](https://api.riskiq.net/api/concepts.html).
|
This playbook uses the RiskIQ Intelligence connector to automatically enrich incidents generated by Sentinel with recent passive DNS records. You need a valid subscription in order to use the connector and playbook. To learn more about the service and request a trial key, see the [API documentation](https://api.riskiq.net/api/concepts.html).
|
||||||
|
|
||||||
<a href="https://portal.azure.com/#create/Microsoft.Template/uri/https%3A%2F%2Fraw.githubusercontent.com%2FAzure%2FAzure-Sentinel%2Fmaster%2FPlaybooks%2FSend-UrlReport%2Fazuredeploy.json" target="_blank">
|
<a href="https://portal.azure.com/#create/Microsoft.Template/uri/https%3A%2F%2Fraw.githubusercontent.com%2FAzure%2FAzure-Sentinel%2Fmaster%2FPlaybooks%2FEnrich-SentinelIncident-RiskIQ-IP-Passive-DNS%2Fazuredeploy.json" target="_blank">
|
||||||
<img src="https://aka.ms/deploytoazurebutton""/>
|
<img src="https://aka.ms/deploytoazurebutton""/>
|
||||||
</a>
|
</a>
|
||||||
<a href="https://portal.azure.us/#create/Microsoft.Template/uri/https%3A%2F%2Fraw.githubusercontent.com%2FAzure%2FAzure-Sentinel%2Fmaster%2FPlaybooks%2FSend-UrlReport%2Fazuredeploy.json" target="_blank">
|
<a href="https://portal.azure.us/#create/Microsoft.Template/uri/https%3A%2F%2Fraw.githubusercontent.com%2FAzure%2FAzure-Sentinel%2Fmaster%2FPlaybooks%2FEnrich-SentinelIncident-RiskIQ-IP-Passive-DNS%2Fazuredeploy.json" target="_blank">
|
||||||
<img src="https://raw.githubusercontent.com/Azure/azure-quickstart-templates/master/1-CONTRIBUTION-GUIDE/images/deploytoazuregov.png"/>
|
<img src="https://raw.githubusercontent.com/Azure/azure-quickstart-templates/master/1-CONTRIBUTION-GUIDE/images/deploytoazuregov.png"/>
|
||||||
</a>
|
</a>
|
|
@ -3,9 +3,9 @@ author: Brandon Dixon, RiskIQ
|
||||||
|
|
||||||
This playbook uses the RiskIQ Intelligence connector to automatically enrich incidents generated by Sentinel with SSL certificates. You need a valid subscription in order to use the connector and playbook. To learn more about the service and request a trial key, see the [API documentation](https://api.riskiq.net/api/concepts.html).
|
This playbook uses the RiskIQ Intelligence connector to automatically enrich incidents generated by Sentinel with SSL certificates. You need a valid subscription in order to use the connector and playbook. To learn more about the service and request a trial key, see the [API documentation](https://api.riskiq.net/api/concepts.html).
|
||||||
|
|
||||||
<a href="https://portal.azure.com/#create/Microsoft.Template/uri/https%3A%2F%2Fraw.githubusercontent.com%2FAzure%2FAzure-Sentinel%2Fmaster%2FPlaybooks%2FSend-UrlReport%2Fazuredeploy.json" target="_blank">
|
<a href="https://portal.azure.com/#create/Microsoft.Template/uri/https%3A%2F%2Fraw.githubusercontent.com%2FAzure%2FAzure-Sentinel%2Fmaster%2FPlaybooks%2FEnrich-SentinelIncident-RiskIQ-IP-SSL-Certificate%2Fazuredeploy.json" target="_blank">
|
||||||
<img src="https://aka.ms/deploytoazurebutton""/>
|
<img src="https://aka.ms/deploytoazurebutton""/>
|
||||||
</a>
|
</a>
|
||||||
<a href="https://portal.azure.us/#create/Microsoft.Template/uri/https%3A%2F%2Fraw.githubusercontent.com%2FAzure%2FAzure-Sentinel%2Fmaster%2FPlaybooks%2FSend-UrlReport%2Fazuredeploy.json" target="_blank">
|
<a href="https://portal.azure.us/#create/Microsoft.Template/uri/https%3A%2F%2Fraw.githubusercontent.com%2FAzure%2FAzure-Sentinel%2Fmaster%2FPlaybooks%2FEnrich-SentinelIncident-RiskIQ-IP-SSL-Certificate%2Fazuredeploy.json" target="_blank">
|
||||||
<img src="https://raw.githubusercontent.com/Azure/azure-quickstart-templates/master/1-CONTRIBUTION-GUIDE/images/deploytoazuregov.png"/>
|
<img src="https://raw.githubusercontent.com/Azure/azure-quickstart-templates/master/1-CONTRIBUTION-GUIDE/images/deploytoazuregov.png"/>
|
||||||
</a>
|
</a>
|
|
@ -3,9 +3,9 @@ author: Brandon Dixon, RiskIQ
|
||||||
|
|
||||||
This playbook uses the RiskIQ Intelligence connector to automatically enrich incidents generated by Sentinel for domains/hosts. You need a valid subscription in order to use the connector and playbook. To learn more about the service and request a trial key, see the [API documentation](https://api.riskiq.net/api/concepts.html).
|
This playbook uses the RiskIQ Intelligence connector to automatically enrich incidents generated by Sentinel for domains/hosts. You need a valid subscription in order to use the connector and playbook. To learn more about the service and request a trial key, see the [API documentation](https://api.riskiq.net/api/concepts.html).
|
||||||
|
|
||||||
<a href="https://portal.azure.com/#create/Microsoft.Template/uri/https%3A%2F%2Fraw.githubusercontent.com%2FAzure%2FAzure-Sentinel%2Fmaster%2FPlaybooks%2FSend-UrlReport%2Fazuredeploy.json" target="_blank">
|
<a href="https://portal.azure.com/#create/Microsoft.Template/uri/https%3A%2F%2Fraw.githubusercontent.com%2FAzure%2FAzure-Sentinel%2Fmaster%2FPlaybooks%2FEnrich-SentinelIncident-RiskIQ-Summary-Host%2Fazuredeploy.json" target="_blank">
|
||||||
<img src="https://aka.ms/deploytoazurebutton""/>
|
<img src="https://aka.ms/deploytoazurebutton""/>
|
||||||
</a>
|
</a>
|
||||||
<a href="https://portal.azure.us/#create/Microsoft.Template/uri/https%3A%2F%2Fraw.githubusercontent.com%2FAzure%2FAzure-Sentinel%2Fmaster%2FPlaybooks%2FSend-UrlReport%2Fazuredeploy.json" target="_blank">
|
<a href="https://portal.azure.us/#create/Microsoft.Template/uri/https%3A%2F%2Fraw.githubusercontent.com%2FAzure%2FAzure-Sentinel%2Fmaster%2FPlaybooks%2FEnrich-SentinelIncident-RiskIQ-Summary-Host%2Fazuredeploy.json" target="_blank">
|
||||||
<img src="https://raw.githubusercontent.com/Azure/azure-quickstart-templates/master/1-CONTRIBUTION-GUIDE/images/deploytoazuregov.png"/>
|
<img src="https://raw.githubusercontent.com/Azure/azure-quickstart-templates/master/1-CONTRIBUTION-GUIDE/images/deploytoazuregov.png"/>
|
||||||
</a>
|
</a>
|
|
@ -3,9 +3,9 @@ author: Brandon Dixon, RiskIQ
|
||||||
|
|
||||||
This playbook uses the RiskIQ Intelligence connector to automatically enrich incidents generated by Sentinel for IP addresses. You need a valid subscription in order to use the connector and playbook. To learn more about the service and request a trial key, see the [API documentation](https://api.riskiq.net/api/concepts.html).
|
This playbook uses the RiskIQ Intelligence connector to automatically enrich incidents generated by Sentinel for IP addresses. You need a valid subscription in order to use the connector and playbook. To learn more about the service and request a trial key, see the [API documentation](https://api.riskiq.net/api/concepts.html).
|
||||||
|
|
||||||
<a href="https://portal.azure.com/#create/Microsoft.Template/uri/https%3A%2F%2Fraw.githubusercontent.com%2FAzure%2FAzure-Sentinel%2Fmaster%2FPlaybooks%2FSend-UrlReport%2Fazuredeploy.json" target="_blank">
|
<a href="https://portal.azure.com/#create/Microsoft.Template/uri/https%3A%2F%2Fraw.githubusercontent.com%2FAzure%2FAzure-Sentinel%2Fmaster%2FPlaybooks%2FEnrich-SentinelIncident-RiskIQ-Summary-IP%2Fazuredeploy.json" target="_blank">
|
||||||
<img src="https://aka.ms/deploytoazurebutton""/>
|
<img src="https://aka.ms/deploytoazurebutton""/>
|
||||||
</a>
|
</a>
|
||||||
<a href="https://portal.azure.us/#create/Microsoft.Template/uri/https%3A%2F%2Fraw.githubusercontent.com%2FAzure%2FAzure-Sentinel%2Fmaster%2FPlaybooks%2FSend-UrlReport%2Fazuredeploy.json" target="_blank">
|
<a href="https://portal.azure.us/#create/Microsoft.Template/uri/https%3A%2F%2Fraw.githubusercontent.com%2FAzure%2FAzure-Sentinel%2Fmaster%2FPlaybooks%2FEnrich-SentinelIncident-RiskIQ-Summary-IP%2Fazuredeploy.json" target="_blank">
|
||||||
<img src="https://raw.githubusercontent.com/Azure/azure-quickstart-templates/master/1-CONTRIBUTION-GUIDE/images/deploytoazuregov.png"/>
|
<img src="https://raw.githubusercontent.com/Azure/azure-quickstart-templates/master/1-CONTRIBUTION-GUIDE/images/deploytoazuregov.png"/>
|
||||||
</a>
|
</a>
|
|
@ -3,9 +3,9 @@ author: Brandon Dixon, RiskIQ
|
||||||
|
|
||||||
This playbook uses the RiskIQ Intelligence connector to automatically enrich incidents generated by Sentinel. You need a valid subscription in order to use the connector and playbook. To learn more about the service and request a trial key, see the [API documentation](https://api.riskiq.net/api/concepts.html).
|
This playbook uses the RiskIQ Intelligence connector to automatically enrich incidents generated by Sentinel. You need a valid subscription in order to use the connector and playbook. To learn more about the service and request a trial key, see the [API documentation](https://api.riskiq.net/api/concepts.html).
|
||||||
|
|
||||||
<a href="https://portal.azure.com/#create/Microsoft.Template/uri/https%3A%2F%2Fraw.githubusercontent.com%2FAzure%2FAzure-Sentinel%2Fmaster%2FPlaybooks%2FSend-UrlReport%2Fazuredeploy.json" target="_blank">
|
<a href="https://portal.azure.com/#create/Microsoft.Template/uri/https%3A%2F%2Fraw.githubusercontent.com%2FAzure%2FAzure-Sentinel%2Fmaster%2FPlaybooks%2FEnrich-SentinelIncident-RiskIQ-Summary%2Fazuredeploy.json" target="_blank">
|
||||||
<img src="https://aka.ms/deploytoazurebutton""/>
|
<img src="https://aka.ms/deploytoazurebutton""/>
|
||||||
</a>
|
</a>
|
||||||
<a href="https://portal.azure.us/#create/Microsoft.Template/uri/https%3A%2F%2Fraw.githubusercontent.com%2FAzure%2FAzure-Sentinel%2Fmaster%2FPlaybooks%2FSend-UrlReport%2Fazuredeploy.json" target="_blank">
|
<a href="https://portal.azure.us/#create/Microsoft.Template/uri/https%3A%2F%2Fraw.githubusercontent.com%2FAzure%2FAzure-Sentinel%2Fmaster%2FPlaybooks%2FEnrich-SentinelIncident-RiskIQ-Summary%2Fazuredeploy.json" target="_blank">
|
||||||
<img src="https://raw.githubusercontent.com/Azure/azure-quickstart-templates/master/1-CONTRIBUTION-GUIDE/images/deploytoazuregov.png"/>
|
<img src="https://raw.githubusercontent.com/Azure/azure-quickstart-templates/master/1-CONTRIBUTION-GUIDE/images/deploytoazuregov.png"/>
|
||||||
</a>
|
</a>
|
Загрузка…
Ссылка в новой задаче