AgentX includes playbooks that are designed to perform specific actions for investigation and response actions. These playbooks serve as building blocks for addressing larger security use cases in Threat Detection, Investigation and Response. With AgentX's playbooks, security teams can quickly respond to threats with pre-configured and automated workflows. Examples of the playbooks include host isolation, file removal, running an osquery, disabling users, detecting malware and extracting network state. AgentX Playbook is an independent component that needs to be installed separately in Logpoint.
Note: You need to import playbooks in Logpoint. Follow the instructions as mentioned in the AgentX guide.
Release Date: February 4, 2025
Supported On: Logpoint v7.1.0 and later, SOAR 1.5.1 and later
Download: AgentX_Playbook_1.3.0.zip
SHA256: 402667c690973e560fae6ec9542c7b974953dedfa8ce25edbb72ab358880333e
Documentation: AgentX guide
Past Release
Playbook v1.2.0
Release Date: August 16, 2023
Supported On: Logpoint v7.1.0 and later, SOAR 1.5.1 and later
Download: AgentX_Playbook_1.2.0.zip
SHA256: 26f91f4333d7595d46f69af80600dc530e66ea23e960649178d3c04e595a0913
Documentation: AgentX guide
Playbook v1.1.0
Release Date: March 30, 2023
Supported On: Logpoint v7.1.0 and later, SOAR 1.0.0 to 1.5.0
Download: AgentX_Playbook_1.1.0.zip
SHA256: 8e3b3dcfefadb736c0537b29f271897ca7ec16650ef9ba8581068889764a8b77
Support
If you have any queries or require assistance, create a support ticket here.
Comments
Article is closed for comments.