- 07 Feb 2023
- 3 Minutes to read
Content digest 7.2.23
- Updated on 07 Feb 2023
- 3 Minutes to read
We’ve added the following new integration, steps, improvements, and templates:
- Google Drive
- Hatching Triage
- Screenshot Utils
Added the following integration.
A new Pangea steps integration is now available on the Integrations page.
Use the integration to get the reputation of different indicators and to search embargo lists.
Added the following new steps.
A new utility step is now available:
|Resolve DNS||Resolves a given DNS and returns its canonical name, IPs, MX records, NS records, TXT records, and SRV records.|
9new steps are now available as part of the Drata integration.
|Get Monitor by Test ID||Returns the details of the monitor with the given test ID.|
|Get Personnel by ID||Returns information about the personnel record with the given user ID.|
|List Controls||Returns a list of controls.|
|List Monitors||Returns a list of monitors.|
|List Workspaces||Returns a list of workspaces in your account.|
|Upload Background Check for User||Uploads a background check URL for the given user.|
|Upload Control Evidence||Uploads external evidence to map to the given control.|
|Upload Device Evidence||Uploads the device evidence for the given device.|
|Upload User Evidence||Uploads evidence for the given user.|
2 new steps are now available as part of the GitHub integration.
|Create Blob||Creates a GitHub blob used to store the content of a file in a repository.|
|Get Blob||Returns information about the specified blob.|
5 new steps are now available as part of the GitLab integration.
|Create Issue||Creates a new issue in the given project.|
|Delete Issue||Deletes the specified issue.|
|Edit Issue||Updates the specified issue.|
|List Issues||Returns all the issues the authenticated user has access to.|
|List Users||Returns the full list of users in the given project.|
7 new steps are now available as part of the Google Drive integration.
|Create Standard Label||Creates a new standard type label.|
|Delete Label||Permanently deletes a label and its related metadata on Drive items.|
|Disable Label||Disables the given published label.|
|Enable Label||Enables the given disabled label and restores it to its published state.|
|Get Label||Returns information about the label with the given resource name.|
|List Labels||Returns the list of labels.|
|Publish Label||Publishes all draft changes made to the given label.|
A new step isnow available as part of the Hatching Triage integration.
|Get Sample Overview||Returns a complete overview of the given sample and its analysis tasks.|
2 new steps are now available as part of the Okta integration.
|List Devices||Returns a list of all non-deleted devices in your organization.|
|Set User Password as Expired||Sets the status of the given user to PASSWORD_EXPIRED so that they are required to change their password at their next login.|
2 new steps are now available as part of the Orca integration.
|Create Remediation Action||Create a remediation external service action for the given alerts.|
|List Remediation Actions||Returns a list of supported remediation actions of the given action.|
2new steps are now available as part of the Sourcegraph integration.
|Run GraphQL Query||Runs a GraphQL query in Sourcegraph.|
|Run GraphQL Query using SUDO Token||Runs a GraphQL query in Sourcegraph using SUDO privileges.|
4new steps are now available as part of the Torq integration.
|Invite a new user||Invites a new user into the account.|
|List roles||Returns a list of all roles that can be assigned to users in the account.|
|List workflows||Returns a list of all workflows on the account.|
|Remove a tag||Detaches the specified tag from the specified workflow.|
A new step isnow available as part of the WhatsApp integration.
|Send Image Message||Sends a WhatsApp media message with the specified image.|
We made the following improvements.
We updated the Run an inline PowerShell script step to use the latest version of the Exchange Online PowerShell module.
The block_id field is now automatically added to the blocks by the Send Block Form step. This will make it easier to extract the information you need from the step output.
The blocks will be numbered by their order unless a different name is specified by manually adding the block_id field.
Added the following templates to the template library.
- Collect Torq Audit or Activity Logs
- Download a File from a SentinelOne Endpoint
- Scan URLs with VirusTotal and Provide Summary Verdict
- Disable and Contain a Specific User in Azure Active Directory
- Verify Permissions to Execute Workflows - Google Cloud Identity
- Whitelist SHA1 Hashes on Multiple SentinelOne Sites
- Blacklist SHA1 Hashes on Multiple SentinelOne Sites
- Create Exclusions on Multiple SentinelOne Sites
- SSL Certificate Expiration Check
- Identify and Label Confluence Content with PII from BigID
- Identify PII Information Shared in a Slack Workspace via BigID
- Notify on Google Drive Files Containing PII Identified by BigID
- Upload New Threat Intelligence IOCs to Cybereason