VulnDB Integration for Cortex XSOAR
CortexTM XSOAR is an extended Security Orchestration, Automation and Response platform that unifies case management, automation, real-time collaboration and threat intel management to transform every stage of the incident lifecycle. Teams can manage alerts across all sources, standardize processes with playbooks, take action on threat intel, and automate response for any security use case – resulting in significantly faster responses that require less manual review.
With the VulnDB integration for Cortex XSOAR, security teams have the ability to identify critical assets at risk and resolve any associated vulnerabilities quickly.
Automated Vulnerability Data Enrichment and Response
The VulnDB integration for Cortex XSOAR enables organizations to:
- Automate the ingestion of vulnerabilities affecting your asset inventory within Cortex XSOAR for playbook-driven enrichment and response.
- Enrich investigation data with VulnDB’s intelligence on the latest vulnerabilities in end-user software and 3rd party libraries.
- Leverage hundreds of Cortex XSOAR 3rd party library product integrations to coordinate response and remediation across security functions.
- Run thousands of actions (including VulnDB) interactively via a ChatOps interface while collaborating with other analysts and Cortex XSOAR’s chatbot.
Seamlessly integrate vulnerability intelligence into your incident workflows and eliminate dead time by using one platform to collaborate, investigate, and document. The VulnDB integration for Cortex XSOAR Enterprise can shorten investigation and decision-making by automating key tasks in the incident lifecycle.
VulnDB is the most comprehensive and timely vulnerability intelligence available and provides actionable information about the latest in security vulnerabilities via an easy-to-use SaaS Portal, or a RESTful API for easy integration into GRC tools and ticketing systems. VulnDB allows organizations to search on and be alerted to the latest vulnerabilities, both in end-user software and the third-party libraries or dependencies that help build applications.
A subscription to VulnDB provides organizations with simple to understand ratings and metrics on their vendors and products, and how each contributes to the organization’s risk-profile and cost of ownership.