SOC L3 Analyst Agent
Registered Name
L3 SOC Analyst AgentPlaybook File
PLAYBOOK/Case_L3_SOC_Analyst_Agent.pyFunction Introduction
- Calls the Agent to analyze security tickets, generate AI-related fields for the Case, and assist L3 SOC analysts with threat hunting and response.
- Summarizes and analyzes Cases to generate Case Severity/Confidence/Attack Stage/Analysis Rationale/Recommended Actions.
Execution Effect
Development Guide
- This playbook code can be used to develop modules for automated analysis each time a new alert is attached to a Case.