I assume that is a sample list for a larger solution, possibly a playbook. I am not aware of a more extensive list. You might try contacting the author on GitHub. These response actions tend to be organization specific. You might also consider looking at playbooks to call a GPT-LLM for a list of response tasks.
Watchlist Azure Sentinel Update
M Nurohmat
100
Reputation points
Is there anyone who has or knows of a source of information that can provide a more comprehensive or extensive list of SocRA than what is available in this link: https://github.com/Azure/Azure-Sentinel/blob/master/docs/SOCAnalystActionsByAlert.csv? I would appreciate any information.
1 answer
Sort by: Most helpful
-
Andrew Blumhardt 9,586 Reputation points Microsoft Employee
2024-05-06T12:08:46.9033333+00:00