Cisco Threat Response Casebook (beta)

Casebook and Investigation Widgets

What is Cisco Threat Response Casebook (beta)?

Cisco Threat Response Casebook (beta) is a chrome extension provided by Threat Response. It's a powerful tool that aids in saving, sharing, and enriching data in the course of threat analysis. It functions by allowing users to track notes and details as they unravel leads in Threat Response. Added to its features, users can inspect observables from the browser's context menu and initiate a swift investigation on a single observable through simple commands in the URL bar.

Download

Extension stats

By: Cisco XDR

View on Chrome Web Store

Users: 2,000+

Rating: 4.70 (53)

Version: 0.9.6 (Last updated: 2020-10-01)

Creation date: 2020-01-30

Risk impact: High risk impact

Risk likelihood: Low risk likelihood

Manifest version: 2

Permissions:

activeTab
contextMenus
storage
https://visibility.int.iroh.site/
https://private.intel.int.iroh.site/
https://visibility.test.iroh.site/
https://private.intel.test.iroh.site/
https://visibility.apjc.amp.cisco.com/
https://private.intel.apjc.amp.cisco.com/
https://visibility.eu.amp.cisco.com/

Size: 392.19K

Email: ro*****@cisco.com

URLs: Privacy policy

Ranking

# 19850 ▼ 193

Other rankings

#25113 in Workflow & Planning ▼ 33

#6 in response keyword 12

#73 in beta keyword 22 ▼ 3

#132 in typing keyword 18 ▲ 7

#210 in context menu keyword 22 ▲ 42

Upgrade to see more rankings

Other platforms

Not available on Firefox

Not available on Edge

Want to check extension ranking and stats more quickly for other Chrome extensions? Install Chrome-Stats extension to view Chrome-Stats data as you browse the Chrome Web Store.

Extension summary

Analyze keywords

Once installed, please visit your region's Threat Response API Clients page to create Casebook client credentials. In order for the casebook extension to function, you must select ALL SCOPES when adding your new API Client.

The Cisco Threat Response Casebook is a powerful and convenient tool provided by Threat Response for saving, sharing, and enriching your threat analysis. Use cases for tracking notes and other bits and pieces of information as you follow leads in Threat Response. You can add observables and notes as you pursue your quarry.

Along with the Casebook, you'll be able to find and inspect observables through the browser's context menu. Select text on a page, or select a single observable, open the context menu and choose the Cisco Threat Response menu option. The selection will be inspected for observables and you'll be presented with information and actions to help with your investigations.

You can also launch an investigation on a single observable quickly by typing "ctr [space]" in the URL bar then typing or pasting an observable.

User reviews

These summaries are automatically generated weekly using AI based on recent user reviews. Chrome Web Store does not verify user reviews, so some user reviews may be inaccurate, spammy, or outdated.

Pros

Easy to use
Helps improve security
Intuitive interface
Great for grabbing IoCs
Useful for sharing knowledge

Cons

Most mentioned

Buena herramienta para mejorar la seguridad
Muy buena herramienta de seguridad
Awesome tool! Easy to use. Makes grabbing IoCs a painless task.

Recent reviews

Awesome tool! Easy to use. Makes grabbing IoCs a painless task.

Maul “Roc”, 2020-01-30

Buena herramienta para mejorar la seguridad

Jose Alberto Acevedo Soto, 2019-12-20

Es una gran herramienta de seguridad por parte de Cisco. Nos ayuda a minimizar las amenazas.

Juan Pablo Bautista Arana, 2019-12-15

View all user reviews

Extension safety

Risk impact

Cisco Threat Response Casebook (beta) requires some sensitive permissions that could impact your browser and data security. Exercise caution before installing.