Addex extra comments

nostwin · Aug 14, 2024 · 1ac2281 · 1ac2281
1 parent a91bc5e
commit 1ac2281
Showing 1 changed file with 6 additions and 0 deletions.
diff --git a/index.html b/index.html
@@ -748,11 +748,17 @@
 
 </style></head><body><article id="e243412c-6a5a-44d2-83b9-e08b6115ebe1" class="page sans"><header><h1 class="page-title">XSOAR - Security Orchestration and Automation Course</h1><p class="page-description"></p></header><div class="page-body"><p id="18506499-ccb1-44b7-8af6-2c247f9698ca" class=""><em>Version 1.0.0</em></p><div id="f6d99e12-52d3-4466-be29-c2a926d57283" class="column-list"><div id="84faee76-c003-42d1-9be1-4b80287cc70e" style="width:87.5%" class="column"><p id="f672a5ea-c529-48dd-8a0c-62e5aca7271d" class=""> XSOAR - Security Orchestration and Automation Course PDF © 2024 by Kalec Blau is licensed under CC BY-NC-ND 4.0. To view a copy of this license, visit <a href="https://creativecommons.org/licenses/by-nc-nd/4.0/">https://creativecommons.org/licenses/by-nc-nd/4.0/</a></p></div><div id="8f4d9b17-0ee9-4991-835a-69077c839876" style="width:12.5%" class="column"><figure id="5ab1021a-d30c-4a3b-b06e-d41241c23c93" class="image" style="text-align:left"><a href="XSOAR%20-%20Security%20Orchestration%20and%20Automation%20Cour%20e243412c6a5a44d283b9e08b6115ebe1/by-nc-nd.eu.png"><img style="width:108px" src="XSOAR%20-%20Security%20Orchestration%20and%20Automation%20Cour%20e243412c6a5a44d283b9e08b6115ebe1/by-nc-nd.eu.png"/></a></figure></div></div><hr id="e909de42-7ff8-41ff-aa32-963a52a28260"/><figure class="block-color-red_background callout" style="white-space:pre-wrap;display:flex" id="9a6b3b6c-1c54-4048-982d-5ae792bf1ab7"><div style="font-size:1.5em"><span class="icon">📌</span></div><div style="width:100%">The following document is a course guide that contains all related information. <br/>For any questions or suggestions, do not hesitate to contact me.<br/></div></figure><p id="9ce654d1-04e5-4a83-b2ba-35ddbc319f2d" class="">
 	<link rel="stylesheet" href="https://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css">
+<!--
 </p><figure class="block-color-yellow_background callout" style="white-space:pre-wrap;display:flex" id="7680ddb1-5957-405c-89ab-07d1ac729803"><div style="font-size:1.5em"><span class="icon">🏷️</span></div><div style="width:100%"><strong>COUPON:</strong> HAPPYAUTOMATING50<br/><br/><strong>Expiration: </strong>September 12, 2024 1:20 PM PDT<br/>Unlimited redemptions :)<br/><p id="40594ead-fded-41d0-8a18-5a012183e3de" class=""><a href="https://www.udemy.com/course/6116421/?couponCode=HAPPYAUTOMATING50">https://www.udemy.com/course/6116421/?couponCode=HAPPYAUTOMATING50</a></p></div></figure><p id="a8716ad5-e9e4-4ee0-9ead-9fb3b4955887" class="">
+-->
+	<!--
 </p><figure class="block-color-blue_background callout" style="white-space:pre-wrap;display:flex" id="8a28eaa6-39c7-4aaa-90d1-af6445fc86e6"><div style="font-size:1.5em"><span class="icon">🔒</span></div><div style="width:100%"><br/>Feel free to share this material with anyone who needs it for learning XSOAR, as long as the authorship is mentioned :)<br/><br/>If it has been helpful to you, please support me by purchasing my course on Udemy using this link.<br/><br/><br/><a href="https://www.udemy.com/course/xsoar-security-orchestration-and-automation-course/?referralCode=8F469AAD51A79BAA5950">https://www.udemy.com/course/xsoar-security-orchestration-and-automation-course/?referralCode=8F469AAD51A79BAA5950</a><br/><br/>Thank you very much for your support!<br/><br/><br/><em>Kalec Blau </em>⚡<br/><br/><em>Happy Automating!</em></div></figure><p id="55f9aada-3521-4c08-97ce-db62c310149f" class="">
 </p>
+-->
 <!-- Custom -->
+<!--
 <button class="btn" style="width:100%; height: 10%;"><a target="_blank" style="display: block; width: 100%; height: 100%; text-align: center; line-height: 4.5;" href="XSOAR - Security Orchestration and Automation Course - Kalec Blau.pdf"> <i class="fa fa-download"></i> Download PDF Version</a></button>
+-->
 <!-- End -->
 <hr id="301b2ca3-7b11-4804-869c-6f719ff78455"/><p id="b9a155d7-2a24-4d51-ad50-134c18b4857d" class="">
 </p><nav id="647ff720-35a2-4ec1-9a1c-3250acdadc83" class="block-color-gray table_of_contents"><div class="table_of_contents-item table_of_contents-indent-0"><a class="table_of_contents-link" href="#d9c2a9e7-3e2c-43f5-b82e-3cfef28d84cd">0. Course Introduction</a></div><div class="table_of_contents-item table_of_contents-indent-0"><a class="table_of_contents-link" href="#1c488c4d-4e06-40b0-82a6-5d057f3a60e4">1. Introduction to SOAR and XSOAR</a></div><div class="table_of_contents-item table_of_contents-indent-1"><a class="table_of_contents-link" href="#4e89df56-10cd-4c43-ac2c-e8d84b24b3ce">1.1. Introduction to SOAR</a></div><div class="table_of_contents-item table_of_contents-indent-1"><a class="table_of_contents-link" href="#1f2a68b9-e61b-4763-9507-d578c960d0f1">1.2. Introduction to XSOAR</a></div><div class="table_of_contents-item table_of_contents-indent-0"><a class="table_of_contents-link" href="#8aac892e-eb68-4653-8b2d-aa67854f0dbb">2. XSOAR Installation and Setup</a></div><div class="table_of_contents-item table_of_contents-indent-1"><a class="table_of_contents-link" href="#de378074-13c5-478c-a45f-6cad06ab2adc">2.1. XSOAR Installation</a></div><div class="table_of_contents-item table_of_contents-indent-1"><a class="table_of_contents-link" href="#a20b237e-83d5-4c1b-a431-5b96f0bcf1cb">2.2. XSOAR UI and Configuration</a></div><div class="table_of_contents-item table_of_contents-indent-0"><a class="table_of_contents-link" href="#ab668931-1ff6-4bb9-a2ec-2308717ad2ab">3. XSOAR Concepts</a></div><div class="table_of_contents-item table_of_contents-indent-1"><a class="table_of_contents-link" href="#3007f135-b295-4759-9116-afd66200ea0e">3.1. Incidents, types and fields</a></div><div class="table_of_contents-item table_of_contents-indent-1"><a class="table_of_contents-link" href="#29f395c8-7041-4511-b1ab-3dbccefbe9bd">3.2. Integrations and Instances</a></div><div class="table_of_contents-item table_of_contents-indent-1"><a class="table_of_contents-link" href="#f820ca9e-9566-48de-b216-433e4924509e">3.3. Classifiers and Mappers</a></div><div class="table_of_contents-item table_of_contents-indent-1"><a class="table_of_contents-link" href="#5993e7aa-c9b3-4c2b-82aa-dff0a2ce8265">3.4. Playbooks and Context</a></div><div class="table_of_contents-item table_of_contents-indent-1"><a class="table_of_contents-link" href="#314a6c4b-cd62-45b8-b251-158355fb2d16">3.5. Automation Scripts, Commands and CLI</a></div><div class="table_of_contents-item table_of_contents-indent-1"><a class="table_of_contents-link" href="#f82e9785-f29b-491c-9d15-88ca78ad13a2">3.6. Lists</a></div><div class="table_of_contents-item table_of_contents-indent-1"><a class="table_of_contents-link" href="#c45f6d3c-1bc3-4afb-a344-1919ec257bda">3.7. Threat Intelligence</a></div><div class="table_of_contents-item table_of_contents-indent-1"><a class="table_of_contents-link" href="#b66cd927-4a79-4ad6-84d9-c0c198a2120f">3.8. Jobs</a></div><div class="table_of_contents-item table_of_contents-indent-1"><a class="table_of_contents-link" href="#df15f3d8-759c-4ca3-92a2-a291e2a7b6ec">3.9. How to search in XSOAR</a></div><div class="table_of_contents-item table_of_contents-indent-1"><a class="table_of_contents-link" href="#ba0e6751-2bbe-4924-bc88-7f151defe62e">3.10. Marketplace and Content Packs</a></div><div class="table_of_contents-item table_of_contents-indent-0"><a class="table_of_contents-link" href="#8b01f927-3186-4a19-89ca-aec680c745a0">4. Playbook Development</a></div><div class="table_of_contents-item table_of_contents-indent-1"><a class="table_of_contents-link" href="#d8a3c0ce-4bf0-4627-ac8b-63ea6c5353e9">4.1. Tasks Types</a></div><div class="table_of_contents-item table_of_contents-indent-1"><a class="table_of_contents-link" href="#e94ad53d-d1dc-4d73-a67e-1710e7b8cc48">4.2. Sub-Playbooks</a></div><div class="table_of_contents-item table_of_contents-indent-1"><a class="table_of_contents-link" href="#9b814264-7bb7-45ee-9ab9-f43451168b1f">4.3. Loops</a></div><div class="table_of_contents-item table_of_contents-indent-1"><a class="table_of_contents-link" href="#cc703669-c812-4312-8b00-645479cc3178">4.4. Filters and Transformers</a></div><div class="table_of_contents-item table_of_contents-indent-1"><a class="table_of_contents-link" href="#e90b0bd0-90d7-4192-be0a-be96cbbe3db9">4.5. Extend Context, Using argument and Quiet Mode</a></div><div class="table_of_contents-item table_of_contents-indent-1"><a class="table_of_contents-link" href="#54e7bf71-4441-4936-a53a-40c516bd7459">4.6. Error Handling and Playbook Metadata</a></div><div class="table_of_contents-item table_of_contents-indent-0"><a class="table_of_contents-link" href="#9169da81-0bcc-49e1-bcc9-59ee9b9e5b8b">5. Automation Scripts Development</a></div><div class="table_of_contents-item table_of_contents-indent-1"><a class="table_of_contents-link" href="#3c8930b5-b6a8-4cad-abc8-c5273666623f">5.1. Demisto Class and Common Server functions</a></div><div class="table_of_contents-item table_of_contents-indent-1"><a class="table_of_contents-link" href="#6c6f80e0-874f-4980-bc10-6fb32ebfd933">5.2. Develop in your favourite IDE</a></div><div class="table_of_contents-item table_of_contents-indent-1"><a class="table_of_contents-link" href="#d3e3e459-d084-41e0-8f09-10ed8f758f15">5.3. Developing Automation Scripts</a></div><div class="table_of_contents-item table_of_contents-indent-1"><a class="table_of_contents-link" href="#1289578b-af6c-47d2-b793-c37aab18ac7c">5.4. Docker Images</a></div><div class="table_of_contents-item table_of_contents-indent-1"><a class="table_of_contents-link" href="#c959c0ec-1801-44ab-bb09-8cda3ac826ba">5.5. XSOAR API</a></div><div class="table_of_contents-item table_of_contents-indent-0"><a class="table_of_contents-link" href="#5c2fb1b2-f151-46cb-8049-7e51fc059d7e">6. Integration Development</a></div><div class="table_of_contents-item table_of_contents-indent-1"><a class="table_of_contents-link" href="#d8f3eeca-ecff-4a40-8b33-2d8e3f6f1ef6">6.1. Integration Categories and Uses Cases</a></div><div class="table_of_contents-item table_of_contents-indent-1"><a class="table_of_contents-link" href="#c2689154-be06-4953-a167-b861f53311c5">6.2. Integration Commands, Methods and Functions</a></div><div class="table_of_contents-item table_of_contents-indent-1"><a class="table_of_contents-link" href="#419977b4-53b3-479f-95fe-9895290bf1a9">6.3. Developing Integrations I</a></div><div class="table_of_contents-item table_of_contents-indent-1"><a class="table_of_contents-link" href="#86164163-fab8-493c-a6a4-59f40dd66eef">6.4. Developing Integrations II</a></div><div class="table_of_contents-item table_of_contents-indent-0"><a class="table_of_contents-link" href="#7cd27069-94e3-40bc-8ad9-6e0a736d00c5">7. Pre-processing and Post-processing</a></div><div class="table_of_contents-item table_of_contents-indent-1"><a class="table_of_contents-link" href="#d4114cf6-8db8-4468-a015-c9ec52cbd778">7.1. Pre-Processing Rules</a></div><div class="table_of_contents-item table_of_contents-indent-1"><a class="table_of_contents-link" href="#ad208fd8-325a-460a-8d45-3316e08ba2fa">7.2. Pre-processing Scripts</a></div><div class="table_of_contents-item table_of_contents-indent-1"><a class="table_of_contents-link" href="#8dc991a1-b609-4611-908d-1e9bbb04f8b0">7.3. Post-processing Scripts</a></div><div class="table_of_contents-item table_of_contents-indent-0"><a class="table_of_contents-link" href="#c1c20ed2-1430-49ec-a029-04856a4f8dcd">8. Building Your XSOAR Automated Workflow</a></div><div class="table_of_contents-item table_of_contents-indent-1"><a class="table_of_contents-link" href="#0738fa81-860f-40b8-b8e8-525bec132719">8.1. Use Case Definition</a></div><div class="table_of_contents-item table_of_contents-indent-1"><a class="table_of_contents-link" href="#cd573b98-f0d4-4beb-b420-39fafa42ca57">8.2. Walkthrough</a></div><div class="table_of_contents-item table_of_contents-indent-1"><a class="table_of_contents-link" href="#a304827c-5da5-4d12-bc02-c9a6258df2f1">8.3. Another Use Case and Automated Workflow</a></div><div class="table_of_contents-item table_of_contents-indent-0"><a class="table_of_contents-link" href="#8bce14a3-d5cb-4fcd-a892-a0d94d57f483">9. Course Conclusion</a></div><div class="table_of_contents-item table_of_contents-indent-0"><a class="table_of_contents-link" href="#6839e443-59df-48b0-bbb9-f2b8d6d27f2e">10. Reference and Further Reading</a></div></nav><p id="23b53c29-a2a1-4ad8-a31e-af4f599344a6" class="">