chrivand

Firepower_O365_Feed_Parser

This is a Sample Script that can parse the O365 Web Service API and upload it to Firepower Management Center as Group Objects.

talos_blog_to_casebook

This is a sample script how to parse the Talos blogs, and automatically add observables to Cisco Casebook.

twitter_search_threatresponse

Twitter Search to Cisco Threat Response Casebook [v1.0]

block_doh_firepower

Pulls DoH domains and resolves them to IP addresses. Then it creates a Network Group Object in Firepower to be blocked (or something else).

meraki-mx-security-events-workflow

AWS_to_Firepower

Parses AWS IP addresses and can create Network Group Objects in Firepower Management Center

sample_python_vulns

securex_incident_correlator

action-kenna-cve-exploits-js

action-webex-js

amp-umb-mssp-sxo

github-kenna-securex-workflow

MISP-SecureX-Orchestration-Workflows

thousand-eyes-securex-response

thousandeyes-umbrella

UmbrellaAdBlocker

action-wxt

Action to post message to Webex Teams

ansible-module

Tetration Ansible Collection

bigevilbeard

chrivand

isolate_endpoint_with_approval

kenna-secx-incident-enrich

This workflow periodically checks SecureX incidents for Threat Detected Events from Cisco Secure Endpoint. When an incident is returned, the workflow collects all observations from it and reaches to Kenna Security for vulnerabilities information related to executed malware. If information is returned, the workflow updates the incident in SecureX to document the findings. This workflow is designed to run every 5 minutes on a schedule.

pandas-devnet

PSIRT-to-SecureX-Casebook

sxo-workflows

sxo_secops_workflow

terraform-provider

Terraform Provider for managing Cisco Secure Workload (Tetration) resources.

terraform-provider-ciscofdm

Terraform Cisco Firepower FDM Provider

tr-05-serverless-cisco-psirt

webhook-payload-templates

A collection of Webhook Payload Templates and related integration docs.