Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

New features for emails #28916

Merged
merged 37 commits into from
Sep 3, 2023
Merged

New features for emails #28916

Show file tree
Hide file tree
Changes from 26 commits
Commits
Show all changes
37 commits
Select commit Hold shift + click to select a range
c30d5c1
New features for emails
chkp-christiang Aug 13, 2023
667521b
Merge branch 'master' into checkpointhec-new-features
chkp-christiang Aug 13, 2023
f2042dc
Merge branch 'contrib/CheckPointSW_checkpointhec-new-features' into c…
chkp-christiang Aug 13, 2023
9f46d6d
Fix validations
chkp-christiang Aug 13, 2023
3afd3d5
Merge branch 'contrib/CheckPointSW_checkpointhec-new-features' into c…
chkp-christiang Aug 13, 2023
08baf13
Merge branch 'contrib/CheckPointSW_checkpointhec-new-features' into c…
chkp-christiang Aug 13, 2023
ddc6dba
Fix lint and test
chkp-christiang Aug 13, 2023
f4ed2c0
Merge branch 'contrib/CheckPointSW_checkpointhec-new-features' into c…
chkp-christiang Aug 13, 2023
6faf262
Increase coverage and fix validation
chkp-christiang Aug 13, 2023
0f2d79d
Merge branch 'contrib/CheckPointSW_checkpointhec-new-features' into c…
chkp-christiang Aug 13, 2023
7a0f006
Increase test coverage
chkp-christiang Aug 13, 2023
6592d25
Manual report condition
chkp-christiang Aug 14, 2023
7e36ae7
Merge branch 'contrib/CheckPointSW_checkpointhec-new-features-1' into…
chkp-christiang Aug 14, 2023
de30395
Merge branch 'contrib/CheckPointSW_checkpointhec-new-features' into c…
chkp-christiang Aug 20, 2023
bf14bb9
Request changes
chkp-christiang Aug 20, 2023
aab5686
Merge branch 'contrib/CheckPointSW_checkpointhec-new-features' into c…
chkp-christiang Aug 20, 2023
cbd89ce
Merge branch 'contrib/CheckPointSW_checkpointhec-new-features' into c…
chkp-christiang Aug 21, 2023
232bb81
Fixes request changes
chkp-christiang Aug 22, 2023
cfac3b9
Merge branch 'contrib/CheckPointSW_checkpointhec-new-features' into c…
chkp-christiang Aug 22, 2023
0a62b56
Fix last fetch
chkp-christiang Aug 22, 2023
3b87e1b
Merge branch 'contrib/CheckPointSW_checkpointhec-new-features' into c…
chkp-christiang Aug 22, 2023
2ad80ba
Skip event with last fetch time
chkp-christiang Aug 22, 2023
64a1b10
Remove sensitive data
chkp-christiang Aug 23, 2023
30fafd7
Merge branch 'contrib/CheckPointSW_checkpointhec-new-features' into c…
chkp-christiang Aug 23, 2023
bfe59ca
Change args from simple to complex format
chkp-christiang Aug 24, 2023
5fa50e8
Merge branch 'contrib/CheckPointSW_checkpointhec-new-features' into c…
chkp-christiang Aug 24, 2023
00dace0
Update notification endpoint
chkp-christiang Aug 29, 2023
bdedf9b
Merge branch 'contrib/CheckPointSW_checkpointhec-new-features' into c…
chkp-christiang Aug 29, 2023
10ab509
Merge branch 'contrib/CheckPointSW_checkpointhec-new-features' into c…
chkp-christiang Aug 29, 2023
795bbd5
Minor fixes
chkp-christiang Aug 29, 2023
ad13454
Fix layout field
chkp-christiang Aug 31, 2023
d4b3a23
Merge branch 'contrib/CheckPointSW_checkpointhec-new-features' into c…
chkp-christiang Aug 31, 2023
3576de1
Fix condition for manual alerts
chkp-christiang Aug 31, 2023
2b593fc
Update docker
chkp-christiang Aug 31, 2023
6fb6867
Add button to get campaign result and fix scan info command output
chkp-christiang Aug 31, 2023
6611a1b
Merge branch 'contrib/CheckPointSW_checkpointhec-new-features' into c…
chkp-christiang Aug 31, 2023
b66c249
Update release notes
chkp-christiang Aug 31, 2023
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
14 changes: 14 additions & 0 deletions Packs/CheckPointHEC/.pack-ignore
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,14 @@
[file:incidentfield-CheckPointHEC_Farm.json]
ignore=IF113

[file:incidentfield-CheckPointHEC_Email_Sender.json]
ignore=IF113

[file:incidentfield-CheckPointHEC_Email_Subject.json]
ignore=IF113

[file:incidentfield-CheckPointHEC_Reported.json]
ignore=IF113

[file:incidentfield-CheckPointHEC_Task.json]
ignore=IF113
7 changes: 5 additions & 2 deletions Packs/CheckPointHEC/.secrets-ignore
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,3 +1,6 @@
[email protected]
24dfc0f6bd9c7f2eaf5f8457b8c593d3
54.240.9.35
[email protected]
https://yardiasp14.com
http://operatf.xyz
[email protected]
[email protected]
4 changes: 2 additions & 2 deletions Packs/CheckPointHEC/IncidentFields/incidentfield-CheckPointHEC_Customer.json
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,8 +1,8 @@
{
"id": "incident_checkpointheccustomer",
"version": -1,
"modified": "2023-07-02T03:39:22.498231281Z",
"name": "CheckPointHEC Customer",
"modified": "2023-08-01T19:26:46.346683Z",
"name": "CP HEC Customer",
"ownerOnly": false,
"placeholder": "CP Customer",
"description": "Customer portal name",
Expand Down
33 changes: 33 additions & 0 deletions Packs/CheckPointHEC/IncidentFields/incidentfield-CheckPointHEC_Email_Sender.json
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,33 @@
{
"id": "incident_checkpointhecemailsender",
"version": -1,
"modified": "2023-08-07T15:36:49.667762Z",
"name": "CP HEC Email Sender",
"ownerOnly": false,
"placeholder": "Email Sender",
"description": "Sender of the email",
"cliName": "checkpointhecemailsender",
"type": "shortText",
"closeForm": false,
"editForm": true,
"required": false,
"neverSetAsRequired": false,
"isReadOnly": false,
"useAsKpi": false,
"locked": false,
"system": false,
"content": true,
"group": 0,
"hidden": false,
"openEnded": false,
"associatedTypes": [
"CheckPointHEC Security Event"
],
"associatedToAll": false,
"unmapped": false,
"unsearchable": true,
"caseInsensitive": true,
"sla": 0,
"threshold": 72,
"fromVersion": "6.9.0"
}
33 changes: 33 additions & 0 deletions Packs/CheckPointHEC/IncidentFields/incidentfield-CheckPointHEC_Email_Subject.json
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,33 @@
{
"id": "incident_checkpointhecemailsubject",
"version": -1,
"modified": "2023-08-07T15:36:49.667762Z",
"name": "CP HEC Email Subject",
"ownerOnly": false,
"placeholder": "Email Subject",
"description": "Subject of the email",
"cliName": "checkpointhecemailsubject",
"type": "shortText",
"closeForm": false,
"editForm": true,
"required": false,
"neverSetAsRequired": false,
"isReadOnly": false,
"useAsKpi": false,
"locked": false,
"system": false,
"content": true,
"group": 0,
"hidden": false,
"openEnded": false,
"associatedTypes": [
"CheckPointHEC Security Event"
],
"associatedToAll": false,
"unmapped": false,
"unsearchable": true,
"caseInsensitive": true,
"sla": 0,
"threshold": 72,
"fromVersion": "6.9.0"
}
4 changes: 2 additions & 2 deletions Packs/CheckPointHEC/IncidentFields/incidentfield-CheckPointHEC_Entity.json
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,8 +1,8 @@
{
"id": "incident_checkpointhecentity",
"version": -1,
"modified": "2023-07-02T04:30:15.829662037Z",
"name": "CheckPointHEC Entity",
"modified": "2023-08-01T19:26:46.346683Z",
"name": "CP HEC Entity",
"ownerOnly": false,
"placeholder": "CP Entity ID",
"description": "Internal entity ID of email with leak",
Expand Down
33 changes: 33 additions & 0 deletions Packs/CheckPointHEC/IncidentFields/incidentfield-CheckPointHEC_Farm.json
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,33 @@
{
"id": "incident_checkpointhecfarm",
"version": -1,
"modified": "2023-08-07T15:36:49.667762Z",
"name": "CP HEC Farm",
"ownerOnly": false,
"placeholder": "CP Farm",
"description": "Customer farm",
"cliName": "checkpointhecfarm",
"type": "shortText",
"closeForm": false,
"editForm": true,
"required": false,
"neverSetAsRequired": false,
"isReadOnly": false,
"useAsKpi": false,
"locked": false,
"system": false,
"content": true,
"group": 0,
"hidden": false,
"openEnded": false,
"associatedTypes": [
"CheckPointHEC Security Event"
],
"associatedToAll": false,
"unmapped": false,
"unsearchable": true,
"caseInsensitive": true,
"sla": 0,
"threshold": 72,
"fromVersion": "6.9.0"
}
33 changes: 33 additions & 0 deletions Packs/CheckPointHEC/IncidentFields/incidentfield-CheckPointHEC_Reported.json
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,33 @@
{
"id": "incident_checkpointhecreported",
"version": -1,
"modified": "2023-08-07T15:36:49.667762Z",
"name": "CP HEC Reported",
"ownerOnly": false,
"placeholder": "CP HEC Reported",
"description": "Incident is manually reported",
"cliName": "checkpointhecreported",
"type": "boolean",
"closeForm": false,
"editForm": true,
"required": false,
"neverSetAsRequired": false,
"isReadOnly": false,
"useAsKpi": false,
"locked": false,
"system": false,
"content": true,
"group": 0,
"hidden": false,
"openEnded": false,
"associatedTypes": [
"CheckPointHEC Security Event"
],
"associatedToAll": false,
"unmapped": false,
"unsearchable": true,
"caseInsensitive": true,
"sla": 0,
"threshold": 72,
"fromVersion": "6.9.0"
}
4 changes: 2 additions & 2 deletions Packs/CheckPointHEC/IncidentFields/incidentfield-CheckPointHEC_Saas.json
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,8 +1,8 @@
{
"id": "incident_checkpointhecsaas",
"version": -1,
"modified": "2023-07-02T04:30:00.142598958Z",
"name": "CheckPointHEC Saas",
"modified": "2023-08-01T19:26:46.346683Z",
"name": "CP HEC Saas",
"ownerOnly": false,
"placeholder": "CP Saas Identifier",
"description": "Internal SaaS Identifier",
Expand Down
32 changes: 32 additions & 0 deletions Packs/CheckPointHEC/IncidentFields/incidentfield-CheckPointHEC_Task.json
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,32 @@
{
"id": "incident_checkpointhectask",
"version": -1,
"modified": "2023-08-07T15:36:49.667762Z",
"name": "CP HEC Task",
"ownerOnly": false,
"description": "Action task id to get results",
"cliName": "checkpointhectask",
"type": "shortText",
"closeForm": false,
"editForm": true,
"required": false,
"neverSetAsRequired": false,
"isReadOnly": false,
"useAsKpi": false,
"locked": false,
"system": false,
"content": true,
"group": 0,
"hidden": false,
"openEnded": false,
"associatedTypes": [
"CheckPointHEC Security Event"
],
"associatedToAll": false,
"unmapped": false,
"unsearchable": true,
"caseInsensitive": true,
"sla": 0,
"threshold": 72,
"fromVersion": "6.9.0"
}
4 changes: 2 additions & 2 deletions Packs/CheckPointHEC/IncidentFields/incidentfield-CheckPointHEC_Type.json
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,8 +1,8 @@
{
"id": "incident_checkpointhectype",
"version": -1,
"modified": "2023-07-02T04:30:44.192922335Z",
"name": "CheckPointHEC Type",
"modified": "2023-08-01T19:26:46.346683Z",
"name": "CP HEC Type",
"ownerOnly": false,
"placeholder": "CP Event Type",
"description": "Detection type (dlp, phishing, malware, spam)",
Expand Down
2 changes: 1 addition & 1 deletion Packs/CheckPointHEC/IncidentTypes/incidenttype-CheckPointHEC_Security_Event.json
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -19,7 +19,7 @@
"disabled": false,
"reputationCalc": 0,
"onChangeRepAlg": 0,
"layout": "CheckPointHEC Security Event Layout",
"layout": "CP HEC Security Event Layout",
"detached": false,
"extractSettings": {
"mode": "Specific",
Expand Down
Loading