Azure Resource 1.0.0
- 23 Jun 2022
- 1 Minute to read
- DarkLight
- PDF
Azure Resource 1.0.0
- Updated on 23 Jun 2022
- 1 Minute to read
- DarkLight
- PDF
Article summary
Did you find this summary helpful?
Thank you for your feedback!
tags: Python | Azure | Entity | Tags | Resources
Description
Integration with Azure Entity is created to support CDC users by providing enrichment consisting of details of resources and tags, enabling CDC users to make informed decisions regarding incident response.
We have provided a CLI command as well as an auto enrichment option for the enrichment of resources over Azure Entity, which is being used as option to provided additional details to analysts to better understand resources.
CyberProof uses custom adaptive cards to display large amounts of threat data in a meaningful and intuitive GUI, to facilitate easy understanding of complex enriched data about Azure Entities.
| Integration Type: | Enrichment |
| Information read: | Summary of tags under the given subscription for the resource. |
| API Supported: | 2021-04-01 |
| Input: | Resource ID of the resource to be enriched. |
| Output: | Detailed enrichment consisting of Azure Entity tags-related information of provided input parameters. |
Customer Configuration
No customer configuration
CDC Command Lines
* **get_resource_tags_cli**
The CLI of the CDC, used to enrich resources with Azure tags. Enrichment can be done using auto-enrichment or directly through the CLI. For auto-enrichment, add resource IDs to be enriched to the azure_resource_entities Datastore key.
| Option | Type | Description | Required |
|---|---|---|---|
| resource_id | string | Azure Resource ID. | True |
| api_version | string | API version. | False |
Workflows
No workflows
Rules
No rules
Sensors
No sensors
Triggers
No triggers
Known Issues
No known issues
Was this article helpful?