| Home |
|---|
The syntax of the command is: $<command> and followed by arguments. You need to type the command in the Comments tab under Workspace as shown in the following figure:
For Example. $Get Alert 1 (Here 1 is Alert ID)
-
Click on the Workspace icon in the detailed view of the record
-
Type the command in the Comment field
-
The playbooks associated with command execute in the background and provide the respective command output
-
The $bot option allow users to run actions from connectors and display the response, the action could be to fetch data such as indicator reputation
-
The $bot can also be used to run remediation actions such as blocking an IP address on an NGFW
ChatOps Solution Pack supports following commands:
| Command | Description |
|---|---|
$Bot --help |
Displays a list of all the Bot commands. |
$Get Alert <Alert ID> |
Retrieves details of a specific alert based on the provided alert ID. |
$Get GeoLocation <IP Address or Domain> |
Retrieves the Geolocation details for the specified IP Address. |
$Get Incident <Incident ID> |
Retrieves details of a specific incident based on the provided incident ID. |
$Get Reputation <Indicator Value> |
Retrieves the reputation for the specified indicator. |
$bot --connector=CONNECTOR_NAME --action=ACTION_NAME --param=PARAM1:VALUE1 --param=PARAM2:VALUE2 |
Executes connector operations |
| Installation | Configuration | Contents |
|---|