Cyfirma - Responses Integration

Overview

Cyfirma is a management platform created to provide organizations with a perspective from the attacker's point of view. They analyze real-time visibility and the external threat environment to take faster action from threat actors.

 

Prerequisites

  • Logsign 6.3.26+ versions support this integration.

Configure On Cyfirma

Forwarding settings are completed as follows:

 

  1. Log in to the Cyfirma portal.
  2. Click On-Boarding > API.
  3. In the API part, copy the value.

 

Configure On Logsign

 

Forwarding settings are completed as follows:

 

  1. Click Settings > Integrations > Responses.
  2. In the ‘Search’ part, write Cyfirma.
  3. Click ‘Configure’ and then click ‘+Device’.

 

  1. Define the settings as follows:
  • Device Name: Define the Device Name.
  • Url: The URL address of the Cyfirma device/product to be integrated with Logsign.
  • Api Key: Define the Api Key.
  1. Click Create to save the changes.







Methods

IOC_SEARCH

 

  • Device: Select the configuration you have configured.
  • Indicator Type: Specify the indicator type.
  • Value: Define the value.

 

VULNERABILITY_SEARCH

 

  • Device: Select the configuration you have configured.
  • Cve: Define the Cve value.

 

COMPROMISED_USER_DETAILS
  • It shows the compromised e-mail addresses.



RISK_DOSSIER

  • Device: Select the configuration you have configured.
  • Indicator Type: Specify the indicator type.
  • Value: Define the value.
Was this article helpful?
0 out of 0 found this helpful

Articles in this section

See more
Become a Certified Logsign User/Administrator
Sign-up for Logsign Academy and take the courses to learn about Logsign USO Platform in detail. Enjoy the courses, and get your badges and certificates. In these courses, you'll learn how to use Logsign in your work and add value to your career.
Visit Our Blog
Our Logsign USO Platform illustrate our expertise. So do the blog. Through our blog posts, deepen your knowledge on various SecOps topics or get updated about important news & modern approaches for cybersecurity. Get into the habit of reading valuable information provided by Logsign. Be a step ahead.