added new utilities function: utilities_artifact_hash
added example workflow for utilities_artifact_hash
utilities_call_rest_api: added longer default timeout and function input field "timeout" to overwrite the default value
modified utilities_email_parse: added normalization of the attachment filename and content-type guess based on python-magic
Motivation and Context
utilities_artifact_hash: allows to use artifact hashes value inside a workflow (e.g: send to an EDR)
utilities_call_rest_api: timeout function field allow to fine tune the time that the function itself can wait for a response before terminate the execution (to avoid keep going long-running requests)
utilities_email_parse: avoid error while uploading attachment when parsing mail
How Has This Been Tested?
tested on our Development and Production environments
[X] Either no new documentation is required by this change, OR I added new documentation
[X] Either no new tests are required by this change, OR I added new tests
[X] I have run pep8 and pylint. I have cleaned up all valid errors and warnings in code I have added or modified. These tools may generate false positives. Don't be worried about ignoring some errors or warnings. The goal is clean, consistent, and readable code.
Signed-off-by: Vantea Resilient Team lucian.sipos@vantea.com
In 2.1.0 of the SOAR utilities functions we have added:
-Add new utilities_artifact_hash function
-Add a timeout parameter to call_rest_api function
Thanks for your input!
Description
Motivation and Context
How Has This Been Tested?
Checklist:
Signed-off-by: Vantea Resilient Team lucian.sipos@vantea.com