Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[SOAR-18584] Proofpoint TAP #3051

Open
wants to merge 8 commits into
base: develop
Choose a base branch
from
Open

[SOAR-18584] Proofpoint TAP #3051

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
8 commits
Select commit Hold shift + click to select a range
580cf80
Initial commit
ablakley-r7 Jan 14, 2025
29fbc1b
Initial commit | Update state and api limit handling in task
ablakley-r7 Jan 16, 2025
d2f5f4d
Validators | Bump SDK
ablakley-r7 Jan 16, 2025
ce961e4
Fix test | Remove test which logic no longer exists
ablakley-r7 Jan 16, 2025
a434757
Add new unit test
ablakley-r7 Jan 16, 2025
9c845bf
Fix import
ablakley-r7 Jan 16, 2025
685cc14
Fix import
ablakley-r7 Jan 16, 2025
570517a
Fix unused argument
ablakley-r7 Jan 16, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
8 changes: 4 additions & 4 deletions plugins/proofpoint_tap/.CHECKSUM
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,7 +1,7 @@
{
"spec": "2fb04d208580295eb2130af367993059",
"manifest": "28e4d2cb40027a13b74ccd2156ed9798",
"setup": "c7621059ff603f9c8aa42bbbe2ce39e8",
"spec": "e3b6dd712f77e68c4db2906763ea4984",
"manifest": "14b35211c0ebf40e6fad3e569f26aeae",
"setup": "97182fc26a28ec7fc9c4cd98d2ce7d83",
"schemas": [
{
"identifier": "fetch_forensics/schema.py",
Expand Down Expand Up @@ -45,7 +45,7 @@
},
{
"identifier": "monitor_events/schema.py",
"hash": "b871e3cb1925e5738a83b666dc74268a"
"hash": "e2ac0558ed03896ab84d1c123e43b868"
}
]
}
2 changes: 1 addition & 1 deletion plugins/proofpoint_tap/Dockerfile
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,4 +1,4 @@
FROM --platform=linux/amd64 rapid7/insightconnect-python-3-slim-plugin:6.1.0
FROM --platform=linux/amd64 rapid7/insightconnect-python-3-slim-plugin:6.2.3

LABEL organization=rapid7
LABEL sdk=python
Expand Down
2 changes: 1 addition & 1 deletion plugins/proofpoint_tap/bin/komand_proofpoint_tap
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -6,7 +6,7 @@ from sys import argv

Name = "Proofpoint TAP"
Vendor = "rapid7"
Version = "4.1.10"
Version = "4.1.11"
Description = "[Proofpoint Targeted Attack Protection](https://www.proofpoint.com/us/products/ransomware-and-targeted-attack-protection) (TAP) helps you stay ahead of attackers with an innovative approach that detects, analyzes and blocks advanced threats before they reach your inbox. This plugin enables users to parse TAP alerts"


Expand Down
3 changes: 2 additions & 1 deletion plugins/proofpoint_tap/help.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -1175,7 +1175,8 @@ Example output:

# Version History

* 4.1.10 - Update `Parse Tap Alert` to utilise BeautifulSoup resolving vulnerabilities | SDK Bump to 6.1.0 | Task Connection test added
* 4.1.11 - SDK Bump to 6.2.3 | `Monitor Events` task updated to handle requests outside of Proofpoint TAP API limits
* 4.1.10 - SDK Bump to 6.1.0 | Task Connection test added Update `Parse Tap Alert` to utilise BeautifulSoup resolving vulnerabilities
* 4.1.9 - Update connection fields to be required.
* 4.1.8 - Include SDK 5.4.9 | Task - Use cutoff of 7 days for first query, use cutoff of 1 hours for subsequent queries
* 4.1.7 - Include SDK 5.4.5 | Task - enforce query cutoff based on Proofpoint API max lookback | Task - toggle pagination when backfilling | Task - only store previous page of hashes.
Expand Down
Loading
Loading