Cortex

Orchestrate and Automate the Incident Response Process

The DomainTools® App for Cortex XSOAR provides automation and orchestration of the incident response processes. Powered by the DomainTools Iris Investigate® API, organizations will have access to essential domain profile, web crawl, SSL, and infrastructure data.

Triage and Investigate Malicious Network Traffic

Eliminate context switching with the ability to perform interactive investigations within the Cortex XSOAR War Room

• Access to purpose-built commands that presents the respective domain intelligence
• Automatically keep track of investigations performed for convenient incident reporting
• Combat significant threats when automating the triage and investigation of malicious traffic

‍

Automate Incident Enrichment and Response

• Automate playbooks for enrichment of DNS observables
• Access to the DomainTools dataset inside of Cortex XSOAR for persistent enrichment, automated investigations, and the associated connected infrastructure
• Reduce reaction time when extracting and containing potential harmful information from malicious payloads