[ASM] EXPANDR-3361 (demisto#32416) (demisto#32479)

* add filest * add files * del test files * SS and pack README * RN * Apply suggestions from code review * update pack README link * Apply suggestions from code review * bump, alphabetize, update SS --------- Co-authored-by: johnnywilkes <32227961+johnnywilkes@users.noreply.github.com> Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com> Co-authored-by: John <40349459+BigEasyJ@users.noreply.github.com> Co-authored-by: Yuval Cohen <86777474+yucohen@users.noreply.github.com>
Aceilies · Jan 29, 2024 · dd4a527 · dd4a527
1 parent da17d55
commit dd4a527
Show file tree

Hide file tree

Showing 9 changed files with 1,702 additions and 121 deletions.
diff --git a/Packs/CortexAttackSurfaceManagement/Playbooks/Cortex_ASM_-_Cortex_Endpoint_Enrichment.yml b/Packs/CortexAttackSurfaceManagement/Playbooks/Cortex_ASM_-_Cortex_Endpoint_Enrichment.yml
diff --git a/...ckSurfaceManagement/Playbooks/Cortex_ASM_-_Cortex_Endpoint_Enrichment_README.md b/...ckSurfaceManagement/Playbooks/Cortex_ASM_-_Cortex_Endpoint_Enrichment_README.md
@@ -0,0 +1,44 @@
+This playbook is used to pull information from Cortex Endpoint (XSIAM/XDR) systems for enrichment purposes.
+
+## Dependencies
+
+This playbook uses the following sub-playbooks, integrations, and scripts.
+
+### Sub-playbooks
+
+This playbook does not use any sub-playbooks.
+
+### Integrations
+
+* Cortex Core - IR
+* Cortex XDR - IR
+
+### Scripts
+
+* GridFieldSetup
+* Set
+
+### Commands
+
+* core-get-endpoints
+* xdr-get-endpoints
+* extractIndicators
+
+## Playbook Inputs
+
+---
+
+| **Name** | **Description** | **Default Value** | **Required** |
+| --- | --- | --- | --- |
+| RemoteIP | IP address of the service. |  | Optional |
+
+## Playbook Outputs
+
+---
+There are no outputs for this playbook.
+
+## Playbook Image
+
+---
+
+![Cortex ASM - Cortex Endpoint Enrichment](../doc_files/Cortex_ASM_-_Cortex_Endpoint_Enrichment.png)