Cybereason Deep Detect & Respond

Cybereason Deep Detect & Respond (EDR) defends against advanced attacks by collecting and analyzing behavioral data to identify suspicious activities.

Parameters

1. Cybereason Domain (required) - The hostname of the Cybereason server.
2. User Name and Password (required) - The user name and password for an account that has read access to the API.
3. Verify SSL (required, default: False) - Verify the SSL certificate offered by the value supplied in Cybereason Domain. For more details, see SSL Trust & CA Settings.
   • If enabled, the SSL certificate offered by the value supplied in Cybereason Domain will be verified against the CA database inside of Axonius. If the SSL certificate can not be validated against the CA database inside of Axonius, the connection will fail with an error.
   • If disabled, the SSL certificate offered by the value supplied in Cybereason Domain will not be verified against the CA database inside of Axonius.
4. HTTPS Proxy (optional, default: empty) - A proxy to use when connecting to the value supplied in Cybereason Domain.
   • If supplied, Axonius will utilize the proxy when connecting to the value supplied in Cybereason Domain.
   • If not supplied, Axonius will connect directly to the value supplied in Cybereason Domain.
5. For details on the common adapter connection parameters and buttons, see Adding a New Adapter Connection.
   
   
   

Advanced Settings

1. Custom tags whitelist (optional, default: empty) - Specify a comma-separated list of Cybereason tags.
   • If supplied, all connections for this adapter will only fetch devices tagged with any of the comma-separated list of Cybereason tags you have specified.
   • If not supplid, all connections for this adapter will fetch any device.