IBM TechXchange Security Technology Alliance Program User Group

  • Private Group
 View Only

January App Exchange Updates

By Dan Schofield posted Wed February 28, 2024 10:08 AM

  

IBM Security App Exchange

IBM Security App Exchange - Tiles for various product integrations

We had almost 40 new or updated apps published in Janurary, here's an overview of what was new.

New Apps for IBM Security QRadar SIEM:

Gem Security Gem DSM for QRadar Link
NetClean Technologies AB NetClean ProActive DSM Link
IBM QRadar SIEM Analyst Custom Searches and Toolbox for QRadar - 7.3.3 FP6+/7.4.1 FP2+ Link
Google LLC Google SCC App For QRadar - QRadar v7.4.3 GA+ Link
IBM QRadar SIEM QRadar Assistant - QRadar 7.3.3 FP10+/7.4.3 FP3+ Link
Recorded Future, Inc. Recorded Future for IBM QRadar – QRadar 7.5.0+ Link
SentinelOne SentinelOne Connector - QRadar 7.4.3 FP8+/7.5.0 UP3+ Link
Trend Micro Trend Micro Vision One for QRadar (XDR) - QRadar v7.3.3FP11+/7.4.3FP5+/7.5.0UP1+ Link
Gatewatcher Gatewatcher For QRadar Link
IBM QRadar SIEM QRadar Log Source Management - QRadar v7.3.3 FP6+/7.4.1 FP2+ Link
IBM IBM Security QRadar AQL Plugin for Grafana Link

New Apps for IBM Security QRadar SOAR

IBM QRadar SOAR IBM SOAR App for Azure Automation Link
DomainTools DomainTools Link
IBM QRadar SOAR Bi-directional App for Salesforce. Create and synchronize cases between Salesforce and SOAR. Link
IBM QRadar SOAR Save snapshots of web pages as incident attachments Link
IBM QRadar SOAR This SOAR function is used to give customers the ability to create parent/child relationships between incidents. Link
IBM QRadar SOAR Perform IP Address and URL artefact analysis using CriminalIP Link

New Apps for IBM Security Verify

IBM Security IBM Security Verify Access Extension for Gateway Container Link
IBM Security IBM Security Verify Access Extension for OIDC Provider Container Link

Updates for SIEM / SOAR and Verify:

IBM Product App Name Description Change Log Link
IBM QRadar SOAR Google Cloud DLP Functions for IBM SOAR Use Google DLP for identifying, redacting or de-identifying personally identifiable information (PII) Convert Workflow scripts to Python3. Link
IBM QRadar SOAR Trend Micro Vision One IBM SOAR app for Trend Micro Vision One Added two functions: Get list of custom scripts and Run custom Script and implemented relevant test functions.,Added copyright line in all python files.,Dockerfile, entrypoint.sh are generated with latest version and License and Readme are updated. Link
IBM QRadar SOAR Pipl Function for SOAR Workflow function that enriches your artifacts with Pipl Data. Convert Workflow scripts to Python3. Link
IBM QRadar SOAR Parse Utilities Function for SOAR Useful workflow/playbook functions to use for common parsing in the SOAR platform Playbook support Link
IBM QRadar SOAR Cisco AMP for Endpoints integration for SOAR Integration with Cisco AMP for Endpoints to allow querying and updating of an AMP for Endpoints deployment. Convert Workflow scripts to Python3. Link
IBM QRadar SOAR Symantec Endpoint Protection Integration for IBM SOAR The Symantec Endpoint Protection integration with the SOAR platform for querying and updating a SEP deployment. Convert Workflow scripts to Python3. Link
IBM QRadar SOAR Data Feeder Kafka Plugin for SOAR This extension allows you to maintain "replica" data for SOAR system data using Kafka. Updated base image to 3.0.0,Added app host test configuration implementation Link
IBM QRadar SOAR REST API Functions for IBM QRadar SOAR This application allows for calling REST web services in the SOAR Platform. Implemented support for request retries, enabling automatic retries for failed requests up to a specified number of attempts.,Ability to include incident attachments as well as file-based artifacts with REST requests.,Added the ability to specify multiple query parameters as key-value pairs.,The validation for the content-type in the request header is now case-insensitive. Link
IBM QRadar SOAR F5 WAF IBM SOAR functions for F5 WAF Update documentation to specify this is for on cloud platform only. Link
IBM QRadar SOAR Data Feeder Elasticsearch Plugin for SOAR This extension allows you to maintain "replica" data for SOAR system data using Elasticsearch. Updated base image to 3.0.0 Link
ReversingLabs ReversingLabs TitaniumCloud XREF Function Integration for SOAR ReversingLabs TitaniumCloud XREF integration provides historic AV vendor cross-reference data for IBM SOAR. Changed the default value of the TitaniumCloud address to "https://data.reversinglabs.com" Link
ReversingLabs ReversingLabs TitaniumCloud MWP Function Integration for SOAR ReversingLabs TitaniumCloud MWP integration provides file sample and hash value response for SOAR. Changed the default TitaniumCloud address in the app config to "https://data.reversinglabs.com" Link
IBM QRadar SOAR AWS WAF Protect against common web exploits and bots. Bug fix for check_result_size error with empty list.,Added example playbooks Link
IBM QRadar SOAR FortiGate Firewall FortiGate NGFWs enable organizations to build scalable and security-driven networks. Added fortigate_vdom to form inputs on all functions. Added example playbooks. Link
IBM QRadar SOAR Azure Active Directory IBM SOAR app for Azure Active Directory Fix bug that causes error when installing on SOAR. Link
IBM QRadar SOAR Data Feeder Splunk Plugin for SOAR This extension allows you to maintain "replica" data for SOAR system data using Splunk. Updated base image to 3.0.0 Link
IBM QRadar SOAR Data Feeder for SOAR This extension allows you to maintain "replica" data for SOAR system data using near real-time synchronization. Added Task Note synchronization. Robustness around incident and attachment error conditions. Added threading of plugin execution.,Manual Sync Incidents function converted to use a Playbook Link
IBM IBM Security Verify SDK (iOS) Provides classes to create mobile apps that interact with IBM Security Verify and IBM Security Verify Access. Update IBM Security Verify (ISV) metadata parsing in iOS 17 Link
0 comments
8 views

Permalink