IBM Security SOAR

Welcome to the IBM Security SOAR online community! Join us to learn more from a community of collaborative experts, who will help you take full advantage of the most advanced, battle-tested SOAR technology.

IBM Security SOAR is the leading technology for orchestrating and automating incident response processes. Collaborate, communicate, and contribute solutions with like-minded Resilient users right here.

For any questions related to this user group, please contact support@communitysite.ibm.com.

SOAR Resources

Search Group

Latest Articles

  • Overview The v38.2 release of Resilient SOAR includes the new Python 3 scripting feature which enables security developers to create Python 3 scripts as a part of an incident or case response right in the UI. Scripting in Resilient is not new and until ...

  • Overview The v39.0.226 release of the Resilient SDK brings about a number of new features and improvements. Included with this is the release of its clone command which represents the finished migration of the command from the resilient-circuits package. ...

  • We are pleased to announce the general availability of the Artifacts Management , IBM Security SOAR’s new artifacts-centric view that allows your security team to triage, investigate, and remediate incidents faster. This new aggregated view provides ...

    2 people recommend this.
  • In this article, we will show you how CrowdStrike Falcon® integrates with IBM Security QRadar and IBM Security Resilient to offer an end-to-end threat management process to transform an organization’s security posture. Together, we deliver simplified ...

  • We are pleased to announce the general availability of AppHost, IBM Security SOAR’s new integration infrastructure that containerizes integrations and brings integration management into the WebUI, reducing the installation and deployment time of applications ...

    3 people recommend this.

Join the Discussion

  • Posted in: IBM Security SOAR

    Hey there, I am facing the same issue here what is the version of SOAR that you are using? Thx Empresa de TI OneIT ------------------------------ Leonardo Lopes ------------------------------

  • Posted in: IBM Security SOAR

    App host is not currently supported in MSSP Organizations. That support will be in our v41 release coming up in Q2. ------------------------------ MICHAEL LYONS ------------------------------

  • Posted in: IBM Security SOAR

    Hello, I want to track time for different phase changes (each containing multiple tasks) in an incident. Currently, there is a default field named Phase which contains all the defined phase(s). Any new phase added gets appended to Phase field. Checking ...

  • Posted in: IBM Security SOAR

    Hi David, Artifact tags have not been added to in product scripting yet, but I will follow up with the team and make sure there is a plan in place to add this in the future. Thanks, ------------------------------ Sean Mc Cann -------------------- ...

  • Posted in: IBM Security SOAR

    Hi all, We are using default threat sources like Virustotal, X-Force etc. but we have some questions about them; How can we know that which types of artifacts sends to threat source server. (Especially virustotal) Can we view or edit default threat ...