https://catalogartifact.azureedge.net/publicartifacts/data443riskmitigationinc1761580347231.azure-sentinel-solution-cyren-s1-ioc-automation-a9f5b00f-30bf-467f-84a6-f86a0a9d9530/555f2023-9c89-4c06-93df-0a8f728b5dc1_LogolargeCyren.png
Cyren SentinelOne IOC Automation
Data443에 의해
Just a moment, logging you in...
Cyren IP reputation threat intelligence for Microsoft Sentinel with SentinelOne IOC automation.
The Cyren SentinelOne IOC Automation solution integrates Cyren's IP reputation threat intelligence feed with Microsoft Sentinel. It automatically retrieves known malicious IP addresses from Cyren and pushes them to SentinelOne as threat IOCs for automated blocking and detection.
This solution includes:
- Logic App playbook for automated Cyren IP reputation IOC retrieval
- Automated threat IOC submission to SentinelOne via API
- Scheduled execution for continuous threat intelligence updates
Prerequisites:
- Microsoft Sentinel workspace
- Cyren API credentials (IP Reputation feed access)
- SentinelOne management console with API access