Skip to content
/ PurpleLab-Cortex-Analyzer Public

PurpleLab Cortex Analyzer enhances TheHive incident responses by automating uploads and detonations of executables tied to cases. This tool streamlines SOC workflows, improving threat analysis and security outcomes.

License

MIT license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

Krook9d/PurpleLab-Cortex-Analyzer

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

9 Commits
LICENSE
LICENSE
 
 
PurpleLabAnalyzer.json
PurpleLabAnalyzer.json
 
 
PurpleLabAnalyzer.py
PurpleLabAnalyzer.py
 
 
README.md
README.md
 
 

Repository files navigation

image

PurpleLab-Cortex-Analyzer

PurpleLab Cortex Analyzer enhances TheHive incident responses by automating uploads and detonations of executables tied to cases. This tool streamlines SOC workflows, improving threat analysis and security outcomes.

Instalation :

  1. Place the two files in the /opt/Cortex-Analyzers/analyzers/ folder.

  2. In PurpleLabAnalyzer.py, replace all occurrences of YourPurpleLabURL with the IP address of your PurpleLab instance.

  3. Configure the analyzer in Cortex.

image

analyzer.purplelab.mp4

About

PurpleLab Cortex Analyzer enhances TheHive incident responses by automating uploads and detonations of executables tied to cases. This tool streamlines SOC workflows, improving threat analysis and security outcomes.

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages