ContraForce
App Vendor: ContraForce
App Category: Cloud Security
Connector Version: 1.0.0
API Version: 1.0.0
Note
This app is currently released as a beta version.
About App
ContraForce is an AI-powered SecOps Service Management platform designed to enhance security infrastructure management and automate detection processes, enabling Security and IT Service Providers to achieve operational excellence and deliver efficient services.
The ContraForce app is configured with Orchestrate to perform the following actions:
Action Name | Description |
|---|---|
Get Incident Details | This action retrieves the details of an incident generated in ContraForce. |
List Incident Entities | This action retrieves a list of all the associated entities involved with a specified incident. |
List Incident Evidences | This action retrieves a list of all the evidence associated with an incident. |
List Incidents | This action lists all incidents in ContraForce. |
Generic Action | This is a generic action used to make requests to any ContraForce endpoint. |
Configuration Parameters
The following configuration parameters are required for the ContraForce app to communicate with the ContraForce enterprise application. The parameters can be configured by creating instances in the app.
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
API Key | Enter the API key to authenticate with ContraForce. | Password | Required | |
Tenant ID | Enter the tenant ID to authenticate with ContraForce. | Text | Required | |
Timeout | Enter the timeout value in seconds. This is the number of seconds that requests will wait to establish a connection with ContraForce. | Integer | Optional | Allowed values: 15-120 Default value: 15 |
Verify | Choose your preference to verify SSL or TLS while making requests. It is recommended to set this option to yes. Passing no may result in incorrectly establishing the connection. | Boolean | Optional | Allowed values:
Default value: false |
Action: Get Incident Details
This action retrieves details of an incident generated in ContraForce.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Incident ID | Enter the incident ID. Example: a1d9fe42-913e-4204-af1b-31b9a76b4d73 | Text | Required | You can retrieve this using the action List Incidents. |
Action: List Incident Entities
This action retrieves a list of all the associated entities involved with a specified incident.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Incident ID | Enter the incident ID. Example: a1d9fe42-913e-4204-af1b-31b9a76b4d73 | Text | Required |
|
Action: List Incident Evidences
This action retrieves a list of all the evidence associated with an incident.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Incident ID | Enter the incident ID. Example: a1d9fe42-913e-4204-af1b-31b9a76b4d73 | Text | Required | You can retrieve this using the action List Incidents. |
Action: List Incidents
This action lists all incidents in ContraForce.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Query | Enter the search query to filter the incidents by various properties. | Text | Optional | Allowed values:
|
Limit | Enter the number of incidents to be retrieved. | Integer | Optional | Default value: 50 |
Additional Data | Enter any additional data to pass to the API. | Key Value | Optional |
Action: Generic Action
This is a generic action used to make requests to any ContraForce endpoint.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Method | Enter the HTTP method to make the request. | Text | Required | Allowed values:
|
Endpoint | Enter the endpoint to make the request to. Example: /incidents | Text | Required | |
Query Params | Enter the query parameters to pass to the API. | Key Value | Optional | |
Payload | Enter the payload to pass to the API. | Any | Optional | |
Extra Fields | Enter the extra fields to pass to the API. | Key Value | Optional |