Block malicious IOC identified by SASE
This topic describes an automation that adds a malicious URL identified by SASE as an indicator to an IOC feed. It updates threat intelligence to enhance security response.
This automation adds the malicious URL identified by SASE Threat Prevention engines as an indicator to an IoC Feed, updating threat intelligence and enhancing security response.
Supported Product
-
SASE
-
IoC Management Management
Parameters
|
Expiration in days (0 means no expiration) |
Set the expiration period for the automation |
Trigger
Matching phishing URL identified by Anti-Bot blade with high confidence.
To view the example of this log, click Run.
Flow