Fortinet Community

I would like to request a dashboard, where we can keep a track of all the playbooks with respect to their status on the dashboard. I should also have a functionality where we can display specific playbooks with the tags, which will help us in tracking the playbooks for each specific category. Please share your views on this? ... View more

I would like to request a FortiSOAR connector for Google Bard if possible, where we can ask the questions/ send a message and get the response from AI (similar to the OpenAI connector). ... View more

Posting on behalf of an internal request, a FortiSOAR connector for ZeroFox Threat intelligence.    Join forces with FortiSOAR, to support a robust external cybersecurity program that disrupts threat actors where they operate: across the surface, deep, and dark web; before they attack vulnerable assets.     Reference Link: https://www.zerofox.com/why-zerofox/      ... View more

Posting on behalf of an internal request, a FortiSOAR connector for OpenCTI Threat intelligence.   Build actions using an open source platform in order to structure, store, organize and visualize technical and non-technical information about cyber threats.   OpenCTI can be integrated with tools and applications such as MISP, TheHive, MITRE ATT&CK, etc.      Reference Link: https://github.com/OpenCTI-Platform/opencti  ... View more

Posting on behalf of an internal request, a FortiSOAR connector for OpenCTI Threat intelligence.   Build actions using an open source platform in order to structure, store, organize and visualize technical and non-technical information about cyber threats.   OpenCTI can be integrated with tools and applications such as MISP, TheHive, MITRE ATT&CK, etc.      Reference Link: https://github.com/OpenCTI-Platform/opencti    ... View more

Posting on behalf of an internal request, build actions to leverage timely, actionable and accurate email threat insights to avoid a potential breach by building the FortiSOAR connector for Cofense. Reference Link: https://cofense.com/product-services/phishing-intelligence/ ... View more

Posting on behalf of an internal request, come collaborate with FortiSOAR for the Cyberpion Threat Intelligence connector. Build around actions that can analyze the connections of your online assets and audit them according to the nature of the connections. Reference Link: https://www.cybersecurityintelligence.com/cyberpion-7217.html   ... View more

Posting on behalf of an internal request, a connector for DataDog SIEM. Need actions to send logs to Logz.io Cloud SIEM from any data source, and connect new insights back to your existing tool stack. Reference Link: https://logz.io/platform/cloud-siem/ ... View more

Posting on behalf of an internal request, a connector for DataDog SIEM.  Need actions to analyse operational and security logs in real time.  Reference Link: https://www.datadoghq.com/product/cloud-siem/  ... View more

AlgoSec can add the Firewall Rule that match allow traffic https://www.algosec.com/docs/en/asms/a32.50/asms-help/content/api-guide/api_introduction.htm   We can convert the JSON to Grid and show in the incident like a any-any rule for this traffic https://www.algosec.com/docs/en/asms/a32.50/asms-help/content/api-guide/traffic-simulation-query.htm ... View more

  Requesting (on behalf of a customer request), a connector for QiAnxin Threat Intelligence. need actions to query IP and File Reputation. ... View more

(posting on behalf of internal request)   Requesting Quterra integration with FortiSOAR. https://quttera.com/quttera-anti-malware-api-help Require the connector to enrich URL information. These are the available actions via API: POST /api/v3/<api-key>/url/scan/<domain-name>[.json|.xml|.yaml] Scan a domain/website (new scan) for malware GET /api/v3/<api-key>/url/status/<domain-name>[.json|.xml|.yaml] Get the status of the domain/website scan request GET /api/v3/<api-key>/url/report/<domain-name>[.json|.xml|.yaml] Get the detailed scan report of the domain/website POST /api/v3/<api-key>/ssl/scan/<domain-name>[.json|.xml|.yaml] Retrieve website's SSL certificate GET /api/v3/<api-key>/ssl/status/<domain-name>[.json|.xml|.yaml] Get the status of the SSL information retrieval request GET /api/v3/<api-key>/ssl/report/<domain-name>[.json|.xml|.yaml] Get website's SSL information report POST /api/v3/<api-key>/integrity/scan/<domain-name>[.json|.xml|.yaml] Scan a domain/website for integrity issues GET /api/v3/<api-key>/integrity/status/<domain-name>[.json|.xml|.yaml] Get the status of the domain/website integrity scan request GET /api/v3/<api-key>/integrity/report/<domain-name>[.json|.xml|.yaml] Get the domain/website integrity report POST /api/v3/<api-key>/ports/scan/<domain-name>[.json|.xml|.yaml] Find the opened ports on a domain (only for dedicated solutions - not the case of EDP) GET /api/v3/<api-key>/ports/status/<domain-name>[.json|.xml|.yaml] Get the status of the port scanning request (only for dedicated solutions - not the case of EDP) GET /api/v3/<api-key>/ports/report/<domain-name>[.json|.xml|.yaml] Get the open ports information report (only for dedicated solutions - not the case of EDP) GET /api/v3/<api-key>/blacklist/status/<domain-name>[.json|.xml|.yaml] Get the blacklisting status of the domain GET /api/v3/<api-key>/blacklist/report/<domain-name>[.json|.xml|.yaml] Get the detailed report per supported blacklisting authority ... View more

Hi, Can we have connector of Azure commands (called az commands). Az commands are Azure native commands for Azure resources configurations. By using we can extend the attack mitigation using FortiSOAR effectively & quickly .   Use case: Azure Blob Storage with open internet access, is the alert from SIEM and can be remediated by using az commands and syntax to restrict with specific IP address.   Shripad Nighojkar ... View more

I would like to request a connector action for FortiSOAR, which can help in bouncing the VPN tunnel for the firewalls: Fortinet FortiGate, Palo Alto Firewall and Cisco Firewalls.  ... View more

With unwavering dedication, we foster the FortiSOAR community, continuously sharing ideas and extending a warm invitation to cybersecurity enthusiasts to join our collaborative journey.   If you are interested, please reach out to fsr-integrations@fortinet.com, where our experts provide technical guidance to support your contributions. Once your efforts are complete, we proudly publish your work at the FortiSOAR content hub (https://fortisoar.contenthub.fortinet.com/), acknowledging your name or your organization as a valued contributor. For a starting point, visit https://github.com/fortinet-fortisoar/how-tos ... View more

I would like to request a fortisoar connector for Cyglass as I want to integrate cyglass alerts with FortiSOAR (especially the smart alerts from CyGlass). ... View more

FortiSOAR AWS connector to create new workspace for user will be very helpful, especially for onboarding of new employees.  ... View more

Posting on behalf of an internal request, a FortiSOAR connector for Hunters.AI Threat Intelligence.  Build actions around a platform that helps security operations see and stop attacks at their root.    Reference Link: https://www.hunters.security/about-us  ... View more

Posting on behalf of an internal request, a FortiSOAR connector for OpenPhish Threat Intelligence.   Participate in building actions around a fully automated self-contained platform for phishing intelligence.    Reference Link: https://openphish.com/faq.html  ... View more