Cisco XDR Ribbon
XDR Ribbon and Investigation Widgets
什么是Cisco XDR Ribbon?
Cisco XDR Ribbon是由Cisco XDR开发的Chrome扩展程序,该扩展的主要功能是“XDR Ribbon and Investigation Widgets”。
扩展截图
下载Cisco XDR Ribbon扩展crx文件
下载Cisco XDR Ribbon扩展crx格式的文件,手动将Chrome插件安装到浏览器中,也可以将crx文件分享给朋友,轻松安装Chrome插件。
扩展使用说明
Cisco XDR Ribbon Extension
Offered by: Cisco XDR
The Cisco XDR ribbon extension offers a distributed set of capabilities that unify visibility, enable automation, accelerate incident response workflows, and improve threat hunting directly from your browser. These capabilities are presented in the form of applications (apps) and tools in the XDR ribbon. With the combination of the apps and your browser, you can:
- Immediately extract observables from arbitrary browser content and get the current Cisco verdict on each observable.
- Take response actions on observables via Cisco XDR and your configured integrated products.
- Use the casebook app to gather information in one place as you explore sightings across multiple products. The casebook is a powerful and convenient tool for saving, sharing, and enriching your threat analysis. Use it to track notes and other information as you follow leads during your threat investigation across your product suite.
- Use the incidents app to triage, investigate, and track high-confidence security incidents from integrated products. You can view the status and summary of the incidents, change the status, link incidents to snapshots, cases, and indicators, and pivot into Cisco XDR to perform investigations.
- Use the Orbital app to run live SQL queries against your endpoints.
You can select text on a page or select a single observable, open the context menu, and choose the Cisco XDR menu option. The selection will be inspected for observables and you will be presented with information and actions to help with your investigations.
You can also quickly find observables on the page, use the Pivot menus to create judgements for the observable and associate it with indicators, investigate the observables in Cisco XDR, block or unblock domains, start isolation of endpoints, and pivot to the integrated products to perform additional threat analysis.
---
Data Services Notice
This tool can read the text and page structure of websites you visit and collects usage analytics. Website data is only collected on user interaction from:
- Context menu actions on page
- Find observables on page (Ribbon bar)
- Scan page for endpoints (Orbital)
Privacy Policy
https://trustportal.cisco.com/c/r/ctp/trust-portal.html#/19800897126758608
Cisco's End User License Agreement
https://www.cisco.com/c/en/us/about/legal/cloud-and-software/software-terms.html 扩展基本信息
| 名称 |  Cisco XDR Ribbon |
| ID | chjchnjgbbnnoonnchlipkeienmdndkn |
| 官方URL | https://chromewebstore.google.com/detail/cisco-xdr-ribbon/chjchnjgbbnnoonnchlipkeienmdndkn |
| 简介 | XDR Ribbon and Investigation Widgets |
| 文件大小 | 1.47 MB |
| 安装次数 | 193 |
| 当前版本 | 1.1.10 |
| 更新时间 | 2024-02-17 |
| 上架时间 | 2023-11-05 |
| 评分 | 5.00/5 共3次评分 |
| 开发者 | Cisco XDR |
| 电子邮箱 | [email protected] |
| 付费类型 | free |
| 扩展官网 | https://www.cisco.com/site/us/en/solutions/security/extended-detection-response-xdr/index.html |
| 隐私政策页面URL | https://trustportal.cisco.com/c/r/ctp/trust-portal.html |
| 支持的语言 | en |
| manifest.json | |
{
"update_url": "https:\/\/clients2.google.com\/service\/update2\/crx",
"manifest_version": 3,
"name": "Cisco XDR Ribbon",
"description": "XDR Ribbon and Investigation Widgets",
"version": "1.1.10",
"key": "MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjUdA4oyt4tx3wGAXfKpzutrrCet9Pl5+rlyRfF65xDZ5DpyQ4N+kJXFbhNS7273L6WwPlQDASFrTOM9r9eU6FqDceJUOQzD7pSFeUeI2CN\/nY+sOQIkgoSNtqDj0Z5Fy4C\/\/op8nBHOtjdeTuZ62j1OTAB\/dv+9xgoszzGJHv1pinsT4wrzdGTtniKNg8NckxEu\/uNmRI30snIefNNruGH35PF7GMCUQX6Q\/bkds4YldJ2Vk4dxP4Ti7A01sUttO7PRtqMeOHv8iyeA9aek7lhTfsfwJLJh5ihheuerA3pIrn9hXz9YLKQm\/fx3dalxaH1p9eKFl0ydq7am6F\/QHiwIDAQAB",
"action": {
"default_popup": "index.html",
"default_title": "Cisco XDR Ribbon",
"default_icon": {
"16": "img\/xdr16.png",
"48": "img\/xdr48.png",
"128": "img\/xdr128.png"
}
},
"permissions": [
"alarms",
"activeTab",
"contextMenus",
"storage",
"idle",
"identity"
],
"host_permissions": [
"https:\/\/visibility.int.iroh.site\/",
"https:\/\/private.intel.int.iroh.site\/",
"https:\/\/conure.int.iroh.site\/",
"https:\/\/visibility.test.iroh.site\/",
"https:\/\/private.intel.test.iroh.site\/",
"https:\/\/conure.test.iroh.site\/",
"https:\/\/visibility.apjc.amp.cisco.com\/",
"https:\/\/private.intel.apjc.amp.cisco.com\/",
"https:\/\/visibility.eu.amp.cisco.com\/",
"https:\/\/private.intel.eu.amp.cisco.com\/",
"https:\/\/visibility.amp.cisco.com\/",
"https:\/\/private.intel.amp.cisco.com\/",
"https:\/\/test.orbital.threatgrid.com\/",
"https:\/\/demo.orbital.threatgrid.com\/",
"https:\/\/orbital.amp.cisco.com\/",
"https:\/\/conure.us.security.cisco.com\/",
"https:\/\/conure.eu.security.cisco.com\/",
"https:\/\/conure.ajpc.security.cisco.com\/"
],
"icons": {
"16": "img\/xdr16.png",
"48": "img\/xdr48.png",
"128": "img\/xdr128.png"
},
"omnibox": {
"keyword": "ctr"
},
"background": {
"service_worker": "background.js"
},
"content_scripts": [
{
"run_at": "document_idle",
"matches": [
"*:\/\/*\/*",
"https:\/\/*\/*",
"file:\/\/*\/*"
],
"js": [
"js\/lib\/tether.min.js",
"js\/inject.js"
]
}
],
"web_accessible_resources": [
{
"resources": [
"js\/config.js",
"js\/lib\/ats-ribbon-core.js",
"js\/lib\/ats-ribbon-lean.js",
"js\/lib\/pdf.js",
"js\/lib\/pdf.worker.js",
"widget\/widget.html",
"authentication\/auth.html"
],
"matches": [
"http:\/\/*\/*",
"https:\/\/*\/*"
]
}
]
} | |
