View the required entitlement needed to access each type of playbook.
The availability of certain playbook templates and the ability to execute playbooks
depends on
your license entitlement for the associated Trend Vision One
features and the required data source configuration in Attack Surface Risk Management.
To view the credits needed for each required entitlement, see Credit requirements for Trend Vision One apps and services.
The following table details the requirements for each playbook type.
|
Category
|
Template
|
Required Data Source
|
Required Entitlement
|
|
Attack Surface Risk Management
|
Account Response
|
|
Attack Surface Risk Management
|
|
Automated High-Risk Account Response
|
|
||
|
Risk Event Response
|
Data sources in Attack Surface Risk Management
|
||
|
CVEs with Global Exploit Activity - Internal Assets
|
|
||
|
CVEs with Global Exploit Activity - Internet-Facing Assets
|
Root domain configuration in Attack Surface Discovery
|
||
|
XDR Threat Investigation
|
Endpoint Response
|
XDR Endpoint Sensor
|
XDR Threat Investigation
|
|
Automated Response Playbook
|
Data sources / processors in XDR Threat Investigation
|
||
|
Incident Response Evidence Collection
|
XDR Endpoint Sensor
|
|