[Marketplace Contribution] Abnormal Security - Content Pack Update

[xsoar-bot]

Warning
The changes in the contributed files were not made on the most updated pack versions

Item Name	Contribution Pack Version	Latest Pack Version
Abnormal Security	2.2.4	2.2.5

For the Reviewer:

1. Compare the code of this PR with the latest version of the pack. Make sure you understand the changes the contributor intended to contribute, and solve the conflicts accordingly.
2. In case improvements are needed, instruct the contributor to edit the code through the GitHub Codespaces and Not through the XSOAR UI.

For the Contributor:
@vipulkaneriya
In case you are requested by your reviewer to improve the code or to make changes, submit them through the GitHub Codespaces and Not through the XSOAR UI.

To use the GitHub Codespaces, do the following:

1. Click the 'Code' button in the right upper corner of this PR.
2. Click 'Create codespace on Transformers'.
3. Click 'Authorize and continue'.
4. Wait until your Codespace environment is generated. When it is, you can edit your code.
5. Commit and push your changes to the head branch of the PR.

Status

• In Progress
• Ready
• In Hold - (Reason for hold)

Contributor

@vipulkaneriya

Notes

We had a challenge searching Threat log and Abuse campaign with limited search filter available for "abnormal-security-list-abuse-mailbox-campaigns" and "abnormal-security-list-threats". I reviewed the Abnormal Security API documentation and found out that we can narrow down list of Threat log and Abuse campaign by adding more search parameters. I added list result by sender, recipient, subject etc and hope your other customer will also benefits from this.

I request you to review other "list" command and add more search parameters.

refer:
https://app.swaggerhub.com/apis/abnormal-security/abx/1.4.2#/Abuse%20Mailbox/get_abusecampaigns
https://app.swaggerhub.com/apis/abnormal-security/abx/1.4.2#/Threats/get_threats

Video Link

Short demo video of the Pack usage. Speeds up the review. Optional but recommended. Use a video sharing service such as Google Drive or YouTube.

[content-bot]

Thank you for your contribution. Your generosity and caring are unrivaled! Rest assured - our content wizard @shmuel44 will very shortly look over your proposed changes.
For your convenience, here is a link to the contributions SLAs document.

[jbabazadeh]

Hi @vipulkaneriya,
Thank you for your contribution!
Good work :)
Please see my comments
You can add the fixes / changes by using the resubmit option resubmit-a-content-pack, or by using GitHub Codespaces - GitHub Codespaces documentation.

[content-bot]

For the Reviewer: Successfully created a pipeline in Gitlab with url: https://gitlab.xdr.pan.local/xdr/cortex-content/content/-/pipelines/871737

[jbabazadeh]

Hi, the code looks good!

We're ready for a demo. Please check this page, and let me know when you're available for one over DFIR.

[jbabazadeh]

Hi @vipulkaneriya
Thanks for the demo!
We're currently awaiting approval from the Partner for this PR. Thanks!

[wolyslager]

+1 on behalf of Abnormal Security

[github-actions]

Thank you for your contribution. Your external PR has been merged and the changes are now included in an internal PR for further review. The internal PR will be merged to the master branch within 3 business days.

[jbabazadeh]

Hi @vipulkaneriya,
I merged the internal PR, and your update is now in the master branch of content repo.
Your update should be available in the marketplace within the next 72 hours.
Again, thank you very much for your contribution!