Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[FR] Responder which sends a mail with a detailed incident status #920

Closed
mkcorpc opened this issue Dec 25, 2020 · 1 comment
Closed

[FR] Responder which sends a mail with a detailed incident status #920

mkcorpc opened this issue Dec 25, 2020 · 1 comment

Comments

@mkcorpc
Copy link
Contributor

mkcorpc commented Dec 25, 2020

Feature description
Mail a detailed status information of an incident case including incident id, name, severity, custom fields, etc. The mail is sent to recipients specified by tags prefixed with 'mail='. The responder respects tlp definitions. For tlp:amber mail address and for tlp:green mail domains must be pre-defined in the configuration. For tlp:red sending mails is denied. The responser also uses thehive4py to collect information about the status of the tasks of the incidents.

Describe the solution you'd like
A new responder should be developed. A second options would be to replace the Mailer responder. I am not sure, but i think the 'Mailer' just sends an empty mail.

Additional context
No additional context
@mkcorpc mkcorpc mentioned this issue Dec 25, 2020
Merged
@dadokkio
Copy link
Contributor

Closing issue since pull has been merged

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@dadokkio @mkcorpc