IBM Security SOAR



Welcome to the IBM Security SOAR User Community
Join us to learn more from a community of collaborative experts, who will help you take full advantage of the most advanced, battle-tested SOAR technology. IBM Security SOAR is the leading technology for orchestrating and automating incident response processes. Collaborate, communicate, and contribute solutions with like-minded Resilient users right here.

As a member of this online user community, you gain:

  • Direct engagement with IBM subject matter experts
  • Tips and tricks from your industry peers
  • News, announcements, and enhancement details

You’ll also get information regarding our regional and virtual user group meetings, upcoming webinars, how-to blogs, and training. We invite you to participate and ask that you contact support@communitysite.ibm.com with any questions.




IBM Security SOAR Resources

Search Group

Latest Blogs

  • In v39, the password-hashing function used for encrypting passwords changed from bcrypt to PBKDF2. All user and API key accounts were automatically upgraded to use PBKDF2 when a user or app logged in to the SOAR platform. In v42.1, bcrypt will be removed ...

  • We have released v42.0.2101 of our Python Libraries for IBM Security SOAR: https://pypi.org/project/resilient/42.0.2101/ https://pypi.org/project/resilient-lib/42.0.2101/ https://pypi.org/project/resilient-circuits/42.0.2101/ https://pypi.org/project/resilient-sdk/42.0.2101/ ...

  • We have released v41.1.2013 of our Python Libraries for IBM Security SOAR: https://pypi.org/project/resilient/41.1.2013/ https://pypi.org/project/resilient-lib/41.1.2013/ https://pypi.org/project/resilient-circuits/41.1.2013/ https://pypi.org/project/resilient-sdk/41.1.2013/ ...

  • Detection With SIEM360, the countless traces of movement within a complex IT landscape are first of all intelligently assessed, brought into context and made visible. Supplemented by the organizational context and specific threshold values, critical ...

  • IBM SOAR (Resilient) Customer Support and IBM Security Learning Services and have teamed up to bring you Troubleshooting and Best Practices for IBM App Host for IBM Security SOAR Open Mic web seminar. This live event will be held on Thursday May 13 ...

Join the Discussion

  • Posted in: IBM Security SOAR

    I came across the same error and the 'resilient-circuits list' output is as follows: rc-data-feed-plugin-odbcfeed==1.0.5: (Package does not define any components) rc-data-feed-plugin-splunkfeed==1.0.3: (Package does not define any components) ...

  • Posted in: IBM Security SOAR

    An App is different than an integration server in that it is "packaged". In addition, app code and runtime are combined into a Docker image. It is this Docker image that is run on the AppHost. So effectively you would need to build your own App, creating ...

  • Posted in: IBM Security SOAR

    I don't know if there is a function to fulfill their need, but Resilient does provide an API (/orgs/{org_id}/incidents/{inc_id}/artifacts/{artifact_id}/related_incidents/query_paged) to query the related incidents for an artifact, so they can create a ...

  • Posted in: IBM Security SOAR

    Hello Guys, I have a question here about how to modify the code of the functions inside the app after installing the app using APPHOST. Actually, I was able to modify the python code inside the function when using the Integration server and Resilient ...

  • Posted in: IBM Security SOAR

    Hi Mohsin, As Benoit mentioned above there are various options using the different apps that we have available for the QRadar SOAR integration.However if you were looking for an out of the box experience where you would get information such as Events, ...