Cisco SecureX Ribbon
SecureX Ribbon and Investigation Widgets
什么是Cisco SecureX Ribbon?
Cisco SecureX Ribbon是由Cisco XDR开发的Chrome扩展程序,该扩展的主要功能是“SecureX Ribbon and Investigation Widgets”。
扩展截图
下载Cisco SecureX Ribbon扩展crx文件
下载Cisco SecureX Ribbon扩展crx格式的文件,手动将Chrome插件安装到浏览器中,也可以将crx文件分享给朋友,轻松安装Chrome插件。
扩展使用说明
Cisco SecureX Ribbon Extension
Offered by: Cisco SecureX
The Cisco SecureX Ribbon extension offers a distributed set of capabilities that unify visibility, enable automation, accelerate incident response workflows, and improve threat hunting directly from your browser. These capabilities are presented in the form of applications (apps) and tools in the SecureX ribbon. With the combination of the apps and your browser, you can:
- Immediately extract observables from arbitrary browser content, and get the current Cisco verdict on each observable
- Take response actions on those observables via Threat Response and your configured integrated products
- Use the SecureX casebook app to gather information in one place as you explore sightings across multiple products. The casebook is a powerful and convenient tool for saving, sharing, and enriching your threat analysis. Use it to track notes and other information as you follow leads during your threat investigation, across your product suite.
- Use the SecureX incidents app to triage, investigate and track high-confidence security incidents from integrated products. You can view the status and summary of the incident, change the status, link it to snapshots, cases, and indicators, and pivot into Threat -Response to investigate it.
- Use the SecureX Orbital app to run live SQL queries against your endpoints.
The SecureX ribbon extension also enables you to find and inspect observables through the browser's context menu. Select text on a page, or select a single observable, open the context menu, and choose the Cisco SecureX menu option. The selection will be inspected for observables and you'll be presented with information and actions to help with your investigations.
You can also quickly find observables on the page, use the Pivot menus to create judgements for the observable and associate it with indicators, investigate the observables in Threat Response, block or unblock domains, start isolation of endpoints, and pivot to the integrated products to perform additional threat analysis.
Once you have installed the SecureX Ribbon extension, you must create the ribbon client credentials in Cisco SecureX and use these credentials to authenticate the ribbon extension. Visit the API Clients page in Cisco SecureX for your region to create the API Client:
NAM: https://securex.us.security.cisco.com/settings/apiClients
EU: https://securex.eu.security.cisco.com/settings/apiClients
APJC: https://securex.apjc.security.cisco.com/settings/apiClients
---
Data Services Notice
This tool can read the text and page structure of websites you visit, and collects usage analytics. Website data is only collected on user interaction from:
- Context menu actions in-page
- Find observables on page (Ribbon bar)
- Scan page for endpoints (Orbital)
Privacy Policy
https://trustportal.cisco.com/c/dam/r/ctp/docs/privacydatasheet/security/cisco-threat-response-privacy-data-sheet.pdf
Cisco's End User License Agreement
https://www.cisco.com/c/en/us/about/legal/cloud-and-software/software-terms.html 扩展基本信息
| 名称 |  Cisco SecureX Ribbon |
| ID | fjmnijfljaoenghofncmjikccfjdaldg |
| 官方URL | https://chromewebstore.google.com/detail/cisco-securex-ribbon/fjmnijfljaoenghofncmjikccfjdaldg |
| 简介 | SecureX Ribbon and Investigation Widgets |
| 文件大小 | 1.59 MB |
| 安装次数 | 3,306 |
| 当前版本 | 2.1.0 |
| 更新时间 | 2023-01-26 |
| 上架时间 | 2020-12-04 |
| 评分 | 5.00/5 共1次评分 |
| 开发者 | Cisco XDR |
| 电子邮箱 | [email protected] |
| 付费类型 | free |
| 扩展官网 | https://www.cisco.com/c/en/us/products/security/securex/index.html |
| 隐私政策页面URL | https://trustportal.cisco.com/c/r/ctp/trust-portal.html |
| 支持的语言 | en-US |
| manifest.json | |
{
"update_url": "https:\/\/clients2.google.com\/service\/update2\/crx",
"manifest_version": 2,
"name": "Cisco SecureX Ribbon",
"description": "SecureX Ribbon and Investigation Widgets",
"version": "2.1.0",
"browser_action": {
"default_popup": "index.html",
"default_title": "Cisco SecureX Ribbon",
"default_icon": {
"16": "img\/securex16.png",
"48": "img\/securex48.png",
"128": "img\/securex128.png"
}
},
"permissions": [
"activeTab",
"contextMenus",
"storage",
"idle",
"https:\/\/visibility.int.iroh.site\/",
"https:\/\/private.intel.int.iroh.site\/",
"https:\/\/visibility.test.iroh.site\/",
"https:\/\/private.intel.test.iroh.site\/",
"https:\/\/visibility.apjc.amp.cisco.com\/",
"https:\/\/private.intel.apjc.amp.cisco.com\/",
"https:\/\/visibility.eu.amp.cisco.com\/",
"https:\/\/private.intel.eu.amp.cisco.com\/",
"https:\/\/visibility.amp.cisco.com\/",
"https:\/\/private.intel.amp.cisco.com\/",
"https:\/\/test.orbital.threatgrid.com\/",
"https:\/\/demo.orbital.threatgrid.com\/",
"https:\/\/orbital.amp.cisco.com\/"
],
"icons": {
"16": "img\/securex16.png",
"48": "img\/securex48.png",
"128": "img\/securex128.png"
},
"omnibox": {
"keyword": "ctr"
},
"background": {
"scripts": [
"js\/config.js",
"js\/lib\/ats-ribbon-lean.js",
"js\/requests.js",
"js\/background.js"
]
},
"content_scripts": [
{
"run_at": "document_idle",
"matches": [
"*:\/\/*\/*",
"https:\/\/*\/*",
"file:\/\/*\/*"
],
"js": [
"js\/lib\/tether.min.js",
"js\/inject.js"
]
}
],
"web_accessible_resources": [
"js\/config.js",
"js\/lib\/ats-ribbon-lean.js",
"js\/lib\/pdf.js",
"js\/lib\/pdf.worker.js",
"widget\/widget.html"
]
} | |
