Search Endpoints By Hash - Generic

Hunts using available tools.

Dependencies

This playbook uses the following sub-playbooks, integrations, and scripts.

Sub-playbooks

  • Search Endpoints By Hash - Carbon Black Protection
  • Search Endpoints By Hash - Carbon Black Response
  • Search Endpoints By Hash - TIE
  • Search Endpoints By Hash - CrowdStrike
  • Search Endpoints By Hash - Cybereason

Integrations

This playbook does not use any integrations.

Scripts

This playbook does not use any scripts.

Commands

This playbook does not use any commands.

Playbook Inputs


NameDescriptionDefault ValueSourceRequired
MD5HashThe MD5 file hash.MD5FileOptional
SHA1HashThe SHA1 file hash.SHA1FileOptional
SHA256HashThe SHA256 file hash.SHA256FileOptional

Playbook Outputs


PathDescriptionType
Endpoint.HostnameThe device hostname.string
EndpointThe endpoint.unknown

Playbook Image


Search_Endpoints_By_Hash_Generic