Adds files which do not exist in the allow or block lists to a block list.Documentation Index
Fetch the complete documentation index at: https://docs.blinkops.com/llms.txt
Use this file to discover all available pages before exploring further.
External DocumentationTo learn more, visit the Cortex XDR documentation.
Parameters
| Parameter | Description |
|---|---|
| Comment | Additional information regarding the action. |
| File Hashes List | A comma-separated list of file hashes which will be added to a block list. |
| Incident ID | String representing the incident ID. When included in the request, the Isolate Endpoints action will appear in the Cortex XDR Incident View Timeline tab. |
Example Output
Workflow Library Example
Add Files to Block List with Cortex Xdr and Send Results Via Email