Cisco XDR Ribbon: Unify Visibility and Enhance Threat Hunting
The Cisco XDR Ribbon Extension, offered by Cisco XDR, is a powerful Chrome add-on that brings a distributed set of capabilities to your browser. This extension unifies visibility, enables automation, accelerates incident response workflows, and improves threat hunting.
With the Cisco XDR Ribbon, you can extract observables from any browser content and instantly get the current Cisco verdict on each observable. You can also take response actions on observables through Cisco XDR and your integrated products. The extension offers various apps and tools, such as the casebook app, which allows you to gather and enrich information in one place as you explore sightings across multiple products. The incidents app helps you triage, investigate, and track high-confidence security incidents, while the Orbital app enables you to run live SQL queries against your endpoints.
Using the Cisco XDR Ribbon is intuitive. Simply select text or a single observable on a page, open the context menu, and choose the Cisco XDR menu option. The extension will inspect the selection for observables and provide you with relevant information and actions to assist your investigations. Additionally, you can quickly find observables on a page, create judgements for them, associate them with indicators, and perform further threat analysis in Cisco XDR.
Please note that the tool collects usage analytics and reads the text and page structure of the websites you visit. It only collects data on user interaction and specific actions within the extension.
For more information about the privacy policy and end-user license agreement, please refer to the links provided below.
