История

dicolanl 525d001024 Updating Deploy buttons and links part 1		2021-06-16 00:25:40 +00:00
..
RecordedFuture_IP_SCF_ImportToDefenderATP.json	Add files via upload	2020-11-26 12:40:23 +00:00
RecordedFuture_IP_SCF_IndicatorProcessor.json	Update RecordedFuture_IP_SCF_IndicatorProcessor.json	2021-05-05 18:06:13 +01:00
readme.md	Updating Deploy buttons and links part 1	2021-06-16 00:25:40 +00:00

readme.md

Recorded Future - IP - Command and Control Security Control Feed

author: Adrian Porcescu, Recorded Future

These playbooks leverage the Recorded Future API to automate the ingestion of Recorded Future IP Command and Control - Security Control Feed, into the ThreatIntelligenceIndicator table, for prevention (block) actions in Microsoft Defender ATP. For additional information please visit Recorded Future.

Note: Due to internal Microsoft Logic Apps dependencies, please deploy first the ImportToSentinel playbook before the IndicatorProcessor one.

Links to deploy the RecordedFuture_IP_SCF_IndicatorProcessor playbook template:

Links to deploy the RecordedFuture_IP_SCF_ImportToDefenderATP playbook template: