Insider threat data exfiltration response with XSOAR

Identify data exfiltration activity from insider threats while speeding investigation and response by providing fast access to file events and metadata across physical and cloud environments.

Comment

Inspiration

Solving the Insider threat challenge

What it does

Use Cortex XSOAR and Code42 integration to identify potential data exfiltration activity from insider threats while speeding investigation and response by providing fast access to file events and metadata across physical and cloud environments.

How I built it

XSOAR Code42 integration

Challenges I ran into

NA

Accomplishments that I'm proud of

Successful run of playbook

What I learned

Solving problems

What's next for Insider threat data exfiltration response with XSOAR

Several enhancements

Built With

  • api
  • code42
  • playbook
  • xsoar
Share this project:

Updates