SOAR Community

VMware Carbon Black Cloud for Splunk SOAR

Validate the asset configuration for connectivity with the supplied configuration

Callback action for the on_poll ingest functionality

Normalize artifact ingested by Splunk App for Splunk Phantom

Dismiss Carbon Black Cloud all future alerts

Kill process on Carbon Black Cloud endpoint

Get binary metadata from Carbon Black Cloud

Unquarantine device in Carbon Black Cloud

Ban process by hash in Carbon Black Cloud

Unban process by hash in Carbon Black Cloud

List device policies in Carbon Black Cloud

Set device policy of a Carbon Black Cloud endpoint

Add IOC to feed/watchlist in Carbon Black Cloud

Remove IOC from watchlist in Carbon Black Cloud

Remove IOC from feed in Carbon Black Cloud

List processes on a device in Carbon Black Cloud

Execute command on a device in Carbon Black Cloud

Delete a report in Carbon Black Cloud feed or watchlist

Retrieve a watchlist in Carbon Black Cloud

Retrieve IOCs for a given report in Carbon Black Cloud

Get Scheduled Task Created in Carbon Black Cloud