This connector is used to apply policy rules to MD5, SHA-1 and SHA-256 hashes in CB Protection. The rules it applies are ban, approve or unapprove. When executed the connector will collect all hashes from saved searches configured in the ThreatQ UI, parse the IOC values and send them to CB Protection. Each saved search corresponds to the policy rules available in Carbon Black - unapprove, approve and ban.