IBM Cloud Pak for Security

Cloud Pak for Security

Join this online user group to communicate across Security product users and IBM experts by sharing advice and best practices with peers and staying up to date regarding product enhancements.

 View Only
Back to discussions
Expand all | Collapse all

Is it possible to create CSV file from json response & attached into incident in CP4s?

  • 1.  Is it possible to create CSV file from json response & attached into incident in CP4s?

    Posted Tue January 16, 2024 12:55 PM



    ------------------------------
    Kavita K
    ------------------------------



  • 2.  RE: Is it possible to create CSV file from json response & attached into incident in CP4s?

    Posted Wed January 17, 2024 05:32 AM

    Hi

    there are two answers on that:

    the 1st is how to handle JSON and CSV in general using .py scipts. https://community.ibm.com/community/user/security/blogs/ralph-belfiore1/2022/11/10/network-hierarchy-management contains an excellent example written by Ralph

    the 2nd is using your Qradar as ingestion data source in CP4S and automatically create cases using the offense forwarder app in your Qradar 7.5.0. The functionality will get integrated in new Qradar+ in Q2 2024. You dont need a special response, just use the offense response. 



    ------------------------------
    [Karl] [Jaeger] [Business Partner]
    [QRadar Specialist]
    [pro4bizz]
    [Karlsruhe] [Germany]
    [4972190981722]
    ------------------------------

    Original Message


  • 3.  RE: Is it possible to create CSV file from json response & attached into incident in CP4s?

    Posted Fri January 19, 2024 06:12 AM

    Thank You



    ------------------------------
    Kavita K
    ------------------------------

    Original Message


Related Content