Resilient features: Functions, Threat Services and other extensions.
These features help you to automate information gathering and decision making.
Functions, when triggered by workflows, send data to a remote function processor, perform an activity then return the results to the workflow. Functions can perform sophisticated operations, such as performing lookups, sending attachments for analysis and adding the resulting report to the incident, and triggering an external action and then returning results for use in decision-making processes.
Learn about Functions
The Resilient platform includes â€śbuilt-inâ€ť threat services. When artifacts are added to incidents, the Resilient platform can search for those artifacts in several cyber threat sources that have been integrated into the product. If the artifact is found in one or more of these threat sources, it is highlighted in red and additional information about the â€śhitâ€ť is displayed.
You can also include your own custom threat services that allow you to provide artifact scanning from your own threat sources, or provide additional scanning beyond what the Resilient platform provides.
Learn about Threat Services
As described in Resilient Extensions, these are the integrations to other security systems, such as BigFix, QRadar, Splunk and more, where data is passed to and from the Resilient platform to coordinate and automate your incident response.