Add Files To Block List
Adds files which do not exist in the allow or block lists to a block list.
Parameters
| Parameter | Description |
|---|---|
| Comment | Additional information regarding the action. |
| File Hashes List | A comma-separated list of file hashes which will be added to a block list. |
| Incident ID | String representing the incident ID.When included in the request, the Isolate Endpoints action will appear in the Cortex XDR Incident View Timeline tab. |
Example Output
true
Workflow Library Example
Add Files to Block List with Cortex Xdr and Send Results Via Email
Preview this Workflow on desktop