Twenty Four Hours To Build An ExtraHop App For Phantom

This is a guest blog post from Vince Stross, a Senior Security Engineer at ExtraHop, reflecting on the process of integrating ExtraHop Reveal(x) security analytics with Phantom's simple, powerful automation and orchestration capabilities. Successful automation and orchestration of security processes require having the right data at the right time and doing the right thing with … Continue reading Twenty Four Hours To Build An ExtraHop App For Phantom

App Spotlight: Farsight Security DNSDB—Incorporate DNS intelligence into automated investigations

The App Spotlight series highlights new or recently updated Phantom Apps. Today we’re highlighting the integration between Phantom’s Security Automation and Orchestration (SA&O) platform and the Farsight Security DNSDB threat intelligence solution. Two of the most popular investigational security actions automated with the Phantom platform are lookup ip, which provides reverse DNS information, and lookup … Continue reading App Spotlight: Farsight Security DNSDB—Incorporate DNS intelligence into automated investigations

App Spotlight: ReversingLabs: Real-Time Classification of Malware Samples

In the first of a new series spotlighting Phantom Apps, today we’re highlighting the integration between Phantom’s Security Automation and Orchestration (SA&O) platform and the ReversingLabs A1000 Malware Analysis Platform. Gaining analyst productivity is paramount to improving your organization’s security posture against file-based threats. One way to increase a team’s productivity is by automating the … Continue reading App Spotlight: ReversingLabs: Real-Time Classification of Malware Samples