Azure-Sentinel/Playbooks/RecordedFuture_IP_Enrichment

Recorded Future - IP - Enrichment

author: Adrian Porcescu, Recorded Future

This playbook leverages the Recorded Future API to automatically enrich the IP indicators found in the alert with the following Recorded Future context: Risk Score, Risk Rules and Link to Intelligence Card. The enrichment content will be posted as a comment in the Sentinel incident. For additional information please visit Recorded Future

Links to deploy the RecordedFuture_IP_Enrichment playbook template: