XSOAR with Prisma Cloud

What if XSOAR could pull in the Prisma Cloud alerts, fully qualify the URL, recommend CLI remediation, email the cloud account owner, and then finally remediate from XSOAR.

Like 1

Comment

Inspiration There is a severe lack of integration between XSOAR and PCS.

What it does

Parses out the OOTB policies in PCS. And then emails the AWS owner of the S3 bucket.

How I built it

Python

Challenges I ran into

There is a lack of commands in the Prisma Cloud integration. I added new commands such as 'remediate.'

Accomplishments that I'm proud of

We can remediate right from XSOAR. We never have to log into PCS and handle the alert.

What I learned

What's next for XSOAR with Prisma Cloud

Built With

python

Updates

Erik witkop started this project — Aug 25, 2020 10:15 AM EDT

Leave feedback in the comments!

Log in or sign up for Devpost to join the conversation.