Private upload mode - docs #1 (#28472)

* Updated READMEs

* Added descriptions

* --amend

* restored deleted file

* Added RNs

* CR updates

* Added THF to known words

* Split ThreatQ_v1

* ThreatQ RNs

* Updated ThreatQ pack-ignore

* Added BA124 to ThreatQ.yml

* Bump pack from version OpenPhish to 2.0.15.

---------

Co-authored-by: Content Bot <[email protected]>

Packs/OpenPhish/Integrations/OpenPhish_v2/OpenPhish_v2_description.md

@@ -1 +1,3 @@
-To configure an integration instance, you only need to set the refresh interval. All of the URLs are stored in the integration context and are refreshed according to the refresh interval.
+To configure an integration instance, you only need to set the refresh interval. All of the URLs are stored in the integration context and are refreshed according to the refresh interval.
+
+Notice: Submitting indicators using the ***url*** command of this integration might make the indicator data publicly available.  See the vendor’s documentation for more details.

Packs/OpenPhish/Integrations/OpenPhish_v2/README.md

@@ -20,6 +20,8 @@ After you successfully execute a command, a DBot message appears in the War Room
 ***
 Checks the reputation of a URL.
 
+Notice: Submitting indicators using this command might make the indicator data publicly available. See the vendor’s documentation for more details.
+
 
 #### Base Command
 

Packs/OpenPhish/ReleaseNotes/2_0_15.md

@@ -0,0 +1,6 @@
+
+#### Integrations
+
+##### OpenPhish v2
+
+Documentation and metadata improvements.

Packs/OpenPhish/pack_metadata.json

@@ -2,7 +2,7 @@
     "name": "OpenPhish",
     "description": "OpenPhish uses proprietary Artificial Intelligence algorithms to automatically identify zero-day phishing sites and provide comprehensive, actionable, real-time threat intelligence.",
     "support": "xsoar",
-    "currentVersion": "2.0.14",
+    "currentVersion": "2.0.15",
     "author": "Cortex XSOAR",
     "url": "https://www.paloaltonetworks.com/cortex",
     "email": "",
@@ -14,8 +14,7 @@
         "Plug & Enrich",
         "Free Enricher"
     ],
-    "useCases": [
-    ],
+    "useCases": [],
     "keywords": [],
     "marketplaces": [
         "xsoar",

Packs/Polygon/.pack-ignore

@@ -4,3 +4,5 @@ ignore=RM106
 [file:Polygon_image.png]
 ignore=IM111
 
+[known_words]
+THF

Packs/Polygon/Integrations/Polygon/Polygon_description.md

@@ -4,4 +4,6 @@
 1. Open THF Huntbox web interface. (It may be like https://huntbox.group-ib.com)
 2. Navigate to Profile and click Generate auth token.
 3. Your server URL is the same as your Huntbox web interface URL.
-3. API Key was generated in 2.
+3. API Key was generated in 2.
+
+Notice: Submitting indicators using the ***polygon-upload-url*** command of this integration might make the indicator data publicly available.  See the vendor’s documentation for more details.

Packs/Polygon/Integrations/Polygon/README.md

@@ -68,7 +68,9 @@ Upload file for analysis
 
 ### polygon-upload-url
 ***
-Upload URL for analysis
+Upload URL for analysis.
+
+Notice: Submitting indicators using this command might make the indicator data publicly available. See the vendor’s documentation for more details.
 
 
 #### Base Command

Packs/Polygon/ReleaseNotes/1_0_10.md

@@ -0,0 +1,6 @@
+
+#### Integrations
+
+##### Group-IB THF Polygon
+
+Documentation and metadata improvements.

Packs/Polygon/pack_metadata.json

@@ -2,7 +2,7 @@
     "name": "Polygon",
     "description": "Analyze your files and URLs with Polygon playbooks and extract deep IOCs that appear when malicious code is triggered and executed.",
     "support": "partner",
-    "currentVersion": "1.0.9",
+    "currentVersion": "1.0.10",
     "author": "Group-IB",
     "url": "https://thfwiki.group-ib.tech/about/summary/",
     "email": "[email protected]",

Packs/ThreatQ/.pack-ignore

@@ -1,8 +1,9 @@
-[file:integration-ThreatQ.yml]
-ignore=IN110,IN109
+[file:ThreatQ.yml]
+ignore=IN110,IN109,BA124
 
 [file:ThreatQ_v2.yml]
 ignore=BA108,BA109
 
 [known_words]
-ThreatQ
+ThreatQ
+Q