Partager via


CyberProof

CDC is a next generation incident management and response platform offered by CyberProof, for building Security Operations Centers (SOCs). The platform is a key component of advanced security operations centers - supporting SOC management, orchestration, and incident response. The Connector interacts with CDC, offering a wide range of incident response automation activities including Alert and Incident creation, parsing and manipulation, as well as observable enrichment.

This connector is available in the following products and regions:

Service Class Regions
Logic Apps Standard All Logic Apps regions except the following:
     -   Azure Government regions
     -   Azure China regions
     -   US Department of Defense (DoD)
Power Automate Premium All Power Automate regions except the following:
     -   US Government (GCC)
     -   US Government (GCC High)
     -   China Cloud operated by 21Vianet
     -   US Department of Defense (DoD)
Power Apps Premium All Power Apps regions except the following:
     -   US Government (GCC)
     -   US Government (GCC High)
     -   China Cloud operated by 21Vianet
     -   US Department of Defense (DoD)
Contact
Name CyberProof Support
URL https://go.cyberproof.com/contact-us
Email it.support@cyberproof.com
Connector Metadata
Publisher CyberProof Inc.
Website https://www.cyberproof.com
Privacy policy https://www.ust.com/en/legal-notice/privacy-policy
Categories Security

Connect to CyberProof CDC to manage your incidents and communicate with analysts, and automate incident response activities.

Prerequisites

You will need CyberProof subscription you can contact CyberProof via https://go.cyberproof.com/contact-us

How to get credentials

You will need CyberProof subscription you can contact CyberProof via https://go.cyberproof.com/contact-us Login to the connector using your CyberProof Instance, and your provided API key.

Get started with your connector

CyberProof connector is dynamic connector which supports various actions and triggers. Such as get alert, get observables, create alerts etc.These can be used to automate the playbooks and forward the data to CyberProof CDC.

Known issues and limitations

None

Common errors and remedies

None

FAQ

How to get credentials? You will need CyberProof subscription you can contact CyberProof via https://go.cyberproof.com/contact-us Login to the connector using your CyberProof Instance, and your provided API key.

Creating a connection

The connector supports the following authentication types:

Default Parameters for creating connection. All regions Not shareable

Default

Applicable: All regions

Parameters for creating connection.

This is not shareable connection. If the power app is shared with another user, another user will be prompted to create new connection explicitly.

Name Type Description Required
CyberProof Host string CyberProof URL (must support https). True
API Key securestring CybeProof API key True

Throttling Limits

Name Calls Renewal Period
API calls per connection 300 60 seconds

Actions

CyberProof Action

CyberProof Action.

CyberProof Get extended properties of Alert (Preview)

CyberProof Get extended properties of Alert

CyberProof Get Incident Summary (Preview)

CyberProof Get Incident Summary

CyberProof Set extended properties to Alert (Preview)

CyberProof Set extended properties to Alert

CyberProof Set Incident Summary (Preview)

CyberProof Set Incident Summary

CyberProof User Action

CyberProof User Action.

CyberProof Action

CyberProof Action.

Parameters

Name Key Required Type Description
actionReq
actionReq True dynamic

Returns

The outputs of this operation are dynamic.

CyberProof Get extended properties of Alert (Preview)

CyberProof Get extended properties of Alert

Parameters

Name Key Required Type Description
actionCustomReq
actionCustomReq True dynamic

Returns

The outputs of this operation are dynamic.

CyberProof Get Incident Summary (Preview)

CyberProof Get Incident Summary

Parameters

Name Key Required Type Description
actionCustomReq
actionCustomReq True dynamic

Returns

The outputs of this operation are dynamic.

CyberProof Set extended properties to Alert (Preview)

CyberProof Set extended properties to Alert

Parameters

Name Key Required Type Description
actionCustomReq
actionCustomReq True dynamic

CyberProof Set Incident Summary (Preview)

CyberProof Set Incident Summary

Parameters

Name Key Required Type Description
actionCustomReq
actionCustomReq True dynamic

CyberProof User Action

CyberProof User Action.

Parameters

Name Key Required Type Description
actionReq
actionReq True dynamic

Returns

The outputs of this operation are dynamic.

Triggers

CyberProof Webhook Trigger

CyberProof Webhook Trigger

CyberProof Webhook Trigger

CyberProof Webhook Trigger

Parameters

Name Key Required Type Description
actionReq
actionReq True dynamic

Returns

The outputs of this operation are dynamic.