IBM Security QRadar SOAR

 View Only
  • 1.  Resilient Python API Roundup - Jan '19

    Posted Wed January 16, 2019 05:49 PM
    The newest version of Resilient-Circuits(v32.0.0) and other integration dependent packages are now live and available on PyPi and GitHubWe appreciate any feedback on Resilient-Circuits and additional packages. Use this thread to connect with our team or contribute feedback to your community.

    The newest release includes:
    • Adding 'resilient-lib'. A module that contains common library calls which facilitate the development of functions for IBM Resilient
    • Support for Sphinx documentation builder
    • Fixing an issue with `resilient-circuits extract`


    ------------------------------
    Brian Walsh
    ------------------------------


  • 2.  RE: Resilient Python API Roundup - Jan '19

    Posted Thu January 24, 2019 08:36 AM
    Hi Brian,

    The resilient-lib looks pretty useful, thanks for that.

    I was wondering to what extent circuits and the appliance have to be on the exact same version? Would circuits v32 work with a v31 appliance?

    Thanks,

    Jerome

    ------------------------------
    Jerome Kleinen
    ------------------------------



  • 3.  RE: Resilient Python API Roundup - Jan '19

    Posted Thu January 24, 2019 11:32 AM
    Hi @Jerome Kleinen,

    Thanks, for using the community form. The resilient-circuits v32 package is just by name and is not dependent on the Resilient appliance version. Resilient-circuits v32 will work with a Resilient appliance v30, v31, and v32.

    Integrations packages, on the other hand, are associated with a Resilient version of they were created with. For example, some were created in a Resilient v31 appliance and are not compatible with a Resilient v30 appliance but are compatible with Resilient v32 and future versions.

    ------------------------------
    Brian Walsh
    ------------------------------



  • 4.  RE: Resilient Python API Roundup - Jan '19

    Posted Thu February 07, 2019 03:29 AM
    Hello again,

    I want to use these capabilities but I am not developer :-(, I will love to start create some code to play with resilient-lib.
    is there any advise about how to start with that?... Installing eclipse, any advise to create a small lab for code testing?

    Thanks for your support.

    ------------------------------
    PABLO ROBERTO GARCIA
    ------------------------------



  • 5.  RE: Resilient Python API Roundup - Jan '19

    Posted Thu February 07, 2019 11:01 AM

    Hi Pablo,

    We are in the process of generating a forum post on how to set up a development environment for function development. It will include the setup of the IDE using PyCharm. Other environments such as eclipse should also work (with the appropriate python extension).
    But you're also asking about how to get started as a new python developer. There's a wealth of tutorials on the Internet to get started with python. There are changes occurring in the python community associated with the sun-setting of python 2.7. So, I'd encourage you to start with python 3.6 or 3.7. Beyond that, review existing function integrations in the resilient-community-apps (see https://github.com/ibmresilient/resilient-community-apps) for how they're written. The fn_isitPhishing integration uses resilient-lib. And more will follow.

    Good luck in your development journey.



    ------------------------------
    Mark Scherfling
    ------------------------------



  • 6.  RE: Resilient Python API Roundup - Jan '19

    Posted Thu February 07, 2019 11:11 AM
    Thanks Mark.

    Great to know, I will start with 3.6 or 3.7. I will try to install the Pycharm and I will play with community apps paying attention to fn_isisPhishing.... 

    Regards,

    ------------------------------
    PABLO ROBERTO GARCIA
    ------------------------------