Block malicious file indicator identified by Anti-Bot Endpoint Security

This topic describes an automation that adds malicious file indicators identified by Anti-Bot Endpoint Security to an IOC feed to enhance threat intelligence and security response. It outlines supported products, parameters, trigger conditions, and flow.

This automation adds the malicious file identified by Anti-Bot Endpoint Security as an indicator to an IOC feed, updating threat intelligence and enhancing security response.

Supported Product

  • Endpoint Security

  • IoC Management

Parameters

Expiration in days (0 means no expiration)

Set the expiration period for the automation.

Trigger

Matching malicious file indicator identified by Anti-Bot Endpoint Security with high confidence.

To view the example of this log, click ../running-automation/running-the-automation.dita.

Flow