Once installed, please visit your regions Threat Response API Clients page to create Casebook client credentials. In order for the casebook extension to function, you must select ALL SCOPES when adding your new API Client. - NAM: https://visibility.amp.cisco.com/#/settings/oauth - EU: https://visibility.eu.amp.cisco.com/#/settings/oauth - APJC: https://visibility.apjc.amp.cisco.com/#/settings/oauth The Cisco Threat Response Casebook is a powerful and convenient tool provided by Threat Response for saving, sharing, and enriching your threat analysis. Use cases for tracking notes and other bits and pieces of information as you follow leads in Threat Response. You can add observables and notes as you pursue your quarry. Along with the Casebook, youll be able to find and inspect observables through the browsers context menu. Select text on a page, or select a single observable, open the context menu and choose the Cisco Threat Response menu option. The selection will be inspected for observables and youll be presented with information and actions to help with your investigations. You can also launch an investigation on a single observable quickly by typing 'ctr [space]' in the URL bar then typing or pasting an observable.
You can Follow the below Step By Step procedure to install the Cisco Threat Response Casebook (beta) Chrome Extension to your Chrome Web browser.
It is the Cisco Threat Response Casebook (beta) Chrome extension download link you can download and install Chrome Browser.
The Recorded Future Browser Extension provides real-time threat intelligence that is just a click away in any web-based application.
VirusTotal Browser Extension.
Use the Context Menu (right click menu) in the browser to conduct single or group searches for selected text.
SecureX Ribbon and Investigation Widgets
Highlight IPs, domains, and URLs on any website to enrich them using Pulsedive's free threat intelligence data set.
My Apps Secure Sign-in Extension
Anomali Copilot is the cybersecurity industry's first natural language processing (NLP) based web content parser.
Clipboard helper for Secret Server
The Shodan plugin tells you where the website is hosted (country, city), who owns the IP and what other services/ ports are open.
Add threat intelligence hover tool tips. IPv4, MD5, SHA2, CVE, FQDN or add your own ThreatIntel IOC. Use any REST API.