Ingest Recorded Future alerts from RF Connect API

Question

Ingest Recorded Future alerts from RF Connect API

colin-stubbs opened this issue 3 years ago · 2 comments

Describe the enhancement:

Ingest Recorded Future alerts from the RF Connect API as events.

Describe a specific use case for the enhancement or feature:

Trigger Elastic Security detections for each ingest alert event in order to trigger alerts to third party destinations (ticketing/etc) and support correlation.

Answer 1 · 2021-09-14T15:45:42.000Z

Pinging @elastic/security-external-integrations (Team:Security-External Integrations)

Answer 2 · 2022-09-14T15:45:54.000Z

Hi!
We just realized that we haven't looked into this issue in a while. We're sorry!

We're labeling this issue as Stale to make it hit our filters and make sure we get back to it as soon as possible. In the meantime, it'd be extremely helpful if you could take a look at it as well and confirm its relevance. A simple comment with a nice emoji will be enough :+1.
Thank you for your contribution!