CISA Advisory
=============

CISA_Advisory
-------------

.. rubric:: Details

===========================  ==========================================================
Author                       Energy SOAR
Version                      1.0
License                      AGPL-V3
Requires Registration        No
Requires Subscription        No
Free Subscription Available  Yes
DataType Supported           cve, other, url
Service Homepage             `CISA <https://www.cisa.gov/>`_
===========================  ==========================================================

.. rubric:: Description

Use CISA advisories as an enrichment source in Energy SOAR investigations.
The analyzer can retrieve advisory context, vulnerability references, affected products and related remediation guidance, including content associated with Known Exploited Vulnerabilities and other public CISA publications.

.. rubric:: Configuration

===========================  ===========================================================
Name                         Description
base_url                     CISA advisory or feed URL
verify_ssl                   Verify server certificate
include_kev                  Include Known Exploited Vulnerabilities context where available
include_references           Include related references and external links
===========================  ===========================================================

.. rubric:: Additional details

Typical use cases include:

* enriching a CVE with CISA advisory context
* checking whether a vulnerability appears in CISA public guidance
* adding remediation and prioritization context during triage