Private upload mode docs #5 (#28700)

* Updated Docs * added RNs * Bump pack from version SymantecBlueCoatMalwareAnalysis to 1.0.9. * Bump pack from version Palo_Alto_Networks_WildFire to 2.1.32. * Updated RNs --------- Co-authored-by: Content Bot <bot@demisto.com>
demisto · Aug 8, 2023 · 36a1558 · 36a1558
1 parent 86d0f31
commit 36a1558
Show file tree

Hide file tree

Showing 21 changed files with 78 additions and 11 deletions.
diff --git a/...ns/Palo_Alto_Networks_WildFire_v2/Palo_Alto_Networks_WildFire_v2_description.md b/...ns/Palo_Alto_Networks_WildFire_v2/Palo_Alto_Networks_WildFire_v2_description.md
@@ -10,5 +10,10 @@ This API key is used in the *API Key* field in the integration configuration.
 - Prisma Access
 - XSOAR TIM
 
+Notice: Submitting indicators using the following commands of this integration might make the indicator data publicly available.
+- ***wildfire-upload-url***
+- ***wildfire-get-url-webartifacts***
+See the vendor’s documentation for more details.
+
 ---
 [View Integration Documentation](https://xsoar.pan.dev/docs/reference/integrations/wild-fire-v2)
diff --git a/...lo_Alto_Networks_WildFire/Integrations/Palo_Alto_Networks_WildFire_v2/README.md b/...lo_Alto_Networks_WildFire/Integrations/Palo_Alto_Networks_WildFire_v2/README.md
@@ -488,6 +488,8 @@ Returns a verdict regarding multiple hashes, stored in a TXT file or given as li
 ***
 Uploads a URL of a webpage to WildFire for analysis.
 
+Notice: Submitting indicators using this command might make the indicator data publicly available. See the vendor’s documentation for more details.
+
 
 #### Base Command
 
@@ -621,6 +623,8 @@ There is no human-readable output for this command.
 ***
 Get web artifacts for a URL webpage. An empty tgz will be returned, no matter what the verdict, or even if the URL is malformed.
 
+Notice: Submitting indicators using this command might make the indicator data publicly available. See the vendor’s documentation for more details.
+
 
 #### Base Command
 

diff --git a/Packs/Palo_Alto_Networks_WildFire/ReleaseNotes/2_1_32.md b/Packs/Palo_Alto_Networks_WildFire/ReleaseNotes/2_1_32.md
@@ -0,0 +1,6 @@
+
+#### Integrations
+
+##### Palo Alto Networks WildFire v2
+
+Documentation and metadata improvements.
diff --git a/Packs/Palo_Alto_Networks_WildFire/pack_metadata.json b/Packs/Palo_Alto_Networks_WildFire/pack_metadata.json
@@ -2,7 +2,7 @@
     "name": "WildFire by Palo Alto Networks",
     "description": "Perform malware dynamic analysis",
     "support": "xsoar",
-    "currentVersion": "2.1.31",
+    "currentVersion": "2.1.32",
     "author": "Cortex XSOAR",
     "url": "https://www.paloaltonetworks.com/cortex",
     "email": "",

diff --git a/...ations/QutteraWebsiteMalwareScanner/QutteraWebsiteMalwareScanner_description.md b/...ations/QutteraWebsiteMalwareScanner/QutteraWebsiteMalwareScanner_description.md
@@ -5,3 +5,8 @@ This integration enables the Quttera scanner API
 # Credentials
 
 Use API key supply by Quttera. To get the key, send request to `contactus@quttera.com`.
+
+Notice: Submitting indicators using the following commands of this integration might make the indicator data publicly available.
+- ***quttera-report-malware***
+- ***quttera-scan-start***
+See the vendor’s documentation for more details.
diff --git a/...utteraWebsiteMalwareScanner/Integrations/QutteraWebsiteMalwareScanner/README.md b/...utteraWebsiteMalwareScanner/Integrations/QutteraWebsiteMalwareScanner/README.md
@@ -20,6 +20,8 @@ After you successfully execute a command, a DBot message appears in the War Room
 ***
 Start to scan a given domain
 
+Notice: Submitting indicators using this command might make the indicator data publicly available. See the vendor’s documentation for more details.
+
 
 #### Base Command
 
@@ -101,6 +103,8 @@ Retrieve report of submitted domain
 ***
 Retrieve url blacklist and reputation
 
+Notice: Submitting indicators using this command might make the indicator data publicly available. See the vendor’s documentation for more details.
+
 
 #### Base Command
 

diff --git a/Packs/QutteraWebsiteMalwareScanner/ReleaseNotes/1_0_8.md b/Packs/QutteraWebsiteMalwareScanner/ReleaseNotes/1_0_8.md
@@ -0,0 +1,6 @@
+
+#### Integrations
+
+##### QutteraWebsiteMalwareScanner
+
+Documentation and metadata improvements.
diff --git a/Packs/QutteraWebsiteMalwareScanner/pack_metadata.json b/Packs/QutteraWebsiteMalwareScanner/pack_metadata.json
@@ -2,7 +2,7 @@
     "name": "Quttera Website Malware Scanner",
     "description": "Detect suspicious/malicious/blocklisted content on domains/URLs. Run real-time normal/heuristic scan and database queries.",
     "support": "partner",
-    "currentVersion": "1.0.7",
+    "currentVersion": "1.0.8",
     "author": "Quttera LTD",
     "url": "https://scannerapi.quttera.com/api/v3",
     "email": "support@quttera.com",
@@ -27,4 +27,4 @@
         "xsoar",
         "marketplacev2"
     ]
-}
+}
diff --git a/...ishingIncidentResponse/Integrations/SlashNextPhishingIncidentResponse/README.md b/...ishingIncidentResponse/Integrations/SlashNextPhishingIncidentResponse/README.md
@@ -454,6 +454,7 @@
 <h3>3. url</h3>
 <hr>
 <p>Queries the SlashNext Cloud database and retrieves the reputation of a url.</p>
+<p>Notice: Submitting indicators using this command might make the indicator data publicly available. See the vendor’s documentation for more details.</p>
 <h5>Base Command</h5>
 <p>
   <code>url</code>
@@ -725,6 +726,7 @@
 <h3>4. slashnext-host-reputation</h3>
 <hr>
 <p>Search in SlashNext Cloud database and retrieve reputation of a host.</p>
+<p>Notice: Submitting indicators using this command might make the indicator data publicly available. See the vendor’s documentation for more details.</p>
 <h5>Base Command</h5>
 <p>
   <code>slashnext-host-reputation</code>
@@ -1944,6 +1946,7 @@ Forensics: Webpage Rendered Text for the Scanned URL = http://www.google.com/was
 <h3>7. slashnext-url-reputation</h3>
 <hr>
 <p>Queries the SlashNext Cloud database and retrieves the reputation of a url.</p>
+<p>Notice: Submitting indicators using this command might make the indicator data publicly available. See the vendor’s documentation for more details.</p>
 <h5>Base Command</h5>
 <p>
   <code>slashnext-url-reputation</code>

diff --git a/...shNextPhishingIncidentResponse/SlashNextPhishingIncidentResponse_description.md b/...shNextPhishingIncidentResponse/SlashNextPhishingIncidentResponse_description.md
@@ -7,3 +7,9 @@ Use cases include abuse inbox management where SOC teams can automate URL analys
 SlashNext not only provides accurate, binary verdicts (rather than threat scores), it provides IOC metadata and screen shots of detected phishing pages. These enables easier classification and reporting. Screen shots can be used as an aid in on-going employee phishing awareness training and testing.
 
 The SlashNext Phishing Incident Response integration app uses an API key to authenticate with SlashNext cloud. If you don't have a valid API key, contact the SlashNext team: support@slashnext.com 
+
+Notice: Submitting indicators using the following commands of this integration might make the indicator data publicly available.
+- ***url***
+- ***slashnext-url-reputation***
+- ***slashnext-host-reputation***
+See the vendor’s documentation for more details.
diff --git a/Packs/SlashNextPhishingIncidentResponse/ReleaseNotes/1_3_5.md b/Packs/SlashNextPhishingIncidentResponse/ReleaseNotes/1_3_5.md
@@ -0,0 +1,6 @@
+
+#### Integrations
+
+##### SlashNext Phishing Incident Response
+
+Documentation and metadata improvements.
diff --git a/Packs/SlashNextPhishingIncidentResponse/pack_metadata.json b/Packs/SlashNextPhishingIncidentResponse/pack_metadata.json
@@ -2,7 +2,7 @@
     "name": "SlashNext Phishing Incident Response - Annual Subscription  (Direct Subscription)",
     "description": "This community edition of SlashNext Phishing Incident Response is intended for organization to try the world’s largest, real-time phishing intelligence database for accurate, definitive binary verdicts on suspicious URLs and download phishing forensics including webpage screenshots, HTML and text. \n\nThis edition is for organizations that need a direct annual subscription to SlashNext Phishing Incident Response, the world’s largest, real-time phishing intelligence database for accurate, definitive binary verdicts on suspicious URLs and download phishing forensics including webpage screenshots, HTML and text. \n\nFor more information go to: https://www.slashnext.com/technology-partners/cortex-xsoar/",
     "support": "partner",
-    "currentVersion": "1.3.4",
+    "currentVersion": "1.3.5",
     "author": "SlashNext",
     "url": "https://www.slashnext.com",
     "email": "support@slashnext.com",
@@ -11,7 +11,9 @@
         "Forensics & Malware Analysis"
     ],
     "tags": [],
-    "useCases": ["Phishing"],
+    "useCases": [
+        "Phishing"
+    ],
     "keywords": [
         "slashnext",
         "reputation",
@@ -38,4 +40,4 @@
         "xsoar",
         "marketplacev2"
     ]
-}
+}
diff --git a/...cBlueCoatMalwareAnalysis/Integrations/SymantecBlueCoatMalwareAnalysis/README.md b/...cBlueCoatMalwareAnalysis/Integrations/SymantecBlueCoatMalwareAnalysis/README.md
@@ -36,6 +36,7 @@
   <li><a href="#symantec-cma-get-report" target="_self">Retrieves an analysis report: symantec-cma-get-report</a></li>
 </ol>
 <h3 id="symantec-cma-upload-url">1. symantec-cma-upload-url</h3>
+<p>Notice: Submitting indicators using this command might make the indicator data publicly available. See the vendor’s documentation for more details.</p>
 <hr>
 <p>Submit a URL for analysis.</p>
 <h5>Base Command</h5>

diff --git a/.../SymantecBlueCoatMalwareAnalysis/SymantecBlueCoatMalwareAnalysis_description.md b/.../SymantecBlueCoatMalwareAnalysis/SymantecBlueCoatMalwareAnalysis_description.md
@@ -1 +1,3 @@
-Note: This is a beta Integration, which lets you implement and test pre-release software. Since the integration is beta, it might contain bugs. Updates to the integration during the beta phase might include non-backward compatible features. We appreciate your feedback on the quality and usability of the integration to help us identify issues, fix them, and continually improve.
+Note: This is a beta Integration, which lets you implement and test pre-release software. Since the integration is beta, it might contain bugs. Updates to the integration during the beta phase might include non-backward compatible features. We appreciate your feedback on the quality and usability of the integration to help us identify issues, fix them, and continually improve.
+
+Notice: Submitting indicators using the ***symantec-cma-upload-url*** command of this integration might make the indicator data publicly available.  See the vendor’s documentation for more details.
diff --git a/Packs/SymantecBlueCoatMalwareAnalysis/ReleaseNotes/1_0_9.md b/Packs/SymantecBlueCoatMalwareAnalysis/ReleaseNotes/1_0_9.md
@@ -0,0 +1,6 @@
+
+#### Integrations
+
+##### Symantec Blue Coat Content and Malware Analysis (Beta)
+
+Documentation and metadata improvements.
diff --git a/Packs/SymantecBlueCoatMalwareAnalysis/pack_metadata.json b/Packs/SymantecBlueCoatMalwareAnalysis/pack_metadata.json
@@ -2,7 +2,7 @@
     "name": "Symantec Blue Coat Content and Malware Analysis (Beta)",
     "description": "Symantec Blue Coat Content and Malware Analysis integration.",
     "support": "xsoar",
-    "currentVersion": "1.0.8",
+    "currentVersion": "1.0.9",
     "author": "Cortex XSOAR",
     "url": "https://www.paloaltonetworks.com/cortex",
     "email": "",

diff --git a/Packs/UrlScan/Integrations/UrlScan/README.md b/Packs/UrlScan/Integrations/UrlScan/README.md
@@ -31,6 +31,7 @@
 <h3 id="h_66414687541541575058084">1. Search for indicators</h3>
 <hr>
 <p>Search for an indicator that is related to previous urlscan.io scans.</p>
+<p>Notice: Submitting indicators using this command might make the indicator data publicly available. See the vendor’s documentation for more details.</p>
 <h5>Base Command</h5>
 <p><code>urlscan-search</code></p>
 <h5>Input</h5>

diff --git a/Packs/UrlScan/Integrations/UrlScan/UrlScan_description.md b/Packs/UrlScan/Integrations/UrlScan/UrlScan_description.md
@@ -2,4 +2,6 @@ This integration checks domain information from the urlscan.io Database.
 In order to submit URLs to scan, an API key is required.
 We recommend submitting the URLs as private or unlisted, 
 as publicly listed submitted URLs will be available to the public.
-Contact urlscan.io to obtain an API key.
+Contact urlscan.io to obtain an API key.
+
+Notice: Submitting indicators using the ***urlscan-search*** command of this integration might make the indicator data publicly available.  See the vendor’s documentation for more details.
diff --git a/Packs/UrlScan/ReleaseNotes/1_2_9.md b/Packs/UrlScan/ReleaseNotes/1_2_9.md
@@ -0,0 +1,6 @@
+
+#### Integrations
+
+##### urlscan.io
+
+Documentation and metadata improvements.
diff --git a/Packs/UrlScan/pack_metadata.json b/Packs/UrlScan/pack_metadata.json
@@ -2,7 +2,7 @@
     "name": "URLScan.io",
     "description": "urlscan.io Web Threat Intelligence",
     "support": "partner",
-    "currentVersion": "1.2.8",
+    "currentVersion": "1.2.9",
     "author": "urlscan GmbH",
     "url": "https://urlscan.io",
     "email": "support@urlscan.io",
@@ -22,4 +22,4 @@
         "xsoar",
         "marketplacev2"
     ]
-}
+}
diff --git a/Packs/fireeye/Integrations/Fireeye/README.md b/Packs/fireeye/Integrations/Fireeye/README.md
@@ -56,6 +56,8 @@
 ***
 Results of the URL submission
 
+Notice: Submitting indicators using this command might make the indicator data publicly available. See the vendor’s documentation for more details.
+
 #### Base Command
 
 `fe-submit-url-result`