Item logo image for Cisco XDR Ribbon

Cisco XDR Ribbon

5.0(

3 ratings

)
ExtensionTools508 users
Item media 4 screenshot
Item media 1 screenshot
Item media 2 screenshot
Item media 3 screenshot
Item media 4 screenshot
Item media 1 screenshot
Item media 1 screenshot
Item media 2 screenshot
Item media 3 screenshot
Item media 4 screenshot

Overview

XDR Ribbon and Investigation Widgets

Cisco XDR Ribbon Extension Offered by: Cisco XDR The Cisco XDR ribbon extension offers a distributed set of capabilities that unify visibility, enable automation, accelerate incident response workflows, and improve threat hunting directly from your browser. These capabilities are presented in the form of applications (apps) and tools in the XDR ribbon. With the combination of the apps and your browser, you can: - Immediately extract observables from arbitrary browser content and get the current Cisco verdict on each observable. - Take response actions on observables via Cisco XDR and your configured integrated products. - Use the casebook app to gather information in one place as you explore sightings across multiple products. The casebook is a powerful and convenient tool for saving, sharing, and enriching your threat analysis. Use it to track notes and other information as you follow leads during your threat investigation across your product suite. - Use the incidents app to triage, investigate, and track high-confidence security incidents from integrated products. You can view the status and summary of the incidents, change the status, link incidents to snapshots, cases, and indicators, and pivot into Cisco XDR to perform investigations. - Use the Orbital app to run live SQL queries against your endpoints. You can select text on a page or select a single observable, open the context menu, and choose the Cisco XDR menu option. The selection will be inspected for observables and you will be presented with information and actions to help with your investigations. You can also quickly find observables on the page, use the Pivot menus to create judgements for the observable and associate it with indicators, investigate the observables in Cisco XDR, block or unblock domains, start isolation of endpoints, and pivot to the integrated products to perform additional threat analysis. --- Data Services Notice This tool can read the text and page structure of websites you visit and collects usage analytics. Website data is only collected on user interaction from: - Context menu actions on page - Find observables on page (Ribbon bar) - Scan page for endpoints (Orbital) Privacy Policy https://trustportal.cisco.com/c/r/ctp/trust-portal.html#/19800897126758608 Cisco's End User License Agreement https://www.cisco.com/c/en/us/about/legal/cloud-and-software/software-terms.html

5 out of 53 ratings

Google doesn't verify reviews. Learn more about results and reviews.

Details

  • Version
    1.11.14
  • Updated
    December 5, 2024
  • Offered by
    Cisco XDR
  • Size
    1.47MiB
  • Languages
    English
  • Developer
    Threat, Detection and Response
    11501 Burnet Rd Building 906, Floor 3 Austin, TX 78758 US
    Email
    roberha2@cisco.com
  • Trader
    This developer has identified itself as a trader per the definition from the European Union.

Privacy

Cisco XDR Ribbon has disclosed the following information regarding the collection and usage of your data. More detailed information can be found in the developer's privacy policy.

Cisco XDR Ribbon handles the following:

User activity
Website content

This developer declares that your data is

  • Not being sold to third parties, outside of the approved use cases
  • Not being used or transferred for purposes that are unrelated to the item's core functionality
  • Not being used or transferred to determine creditworthiness or for lending purposes
Google apps