IBM Security QRadar SOAR

View Only

Welcome to the IBM Security QRadar SOAR User Community
Join us to learn more from a community of collaborative experts, who will help you take full advantage of the most advanced, battle-tested SOAR technology. IBM Security SOAR QRadar is the leading technology for orchestrating and automating incident response processes. Collaborate, communicate, and contribute solutions with like-minded Resilient users right here.

As a member of this online user community, you gain:

Direct engagement with IBM subject matter experts
Tips and tricks from your industry peers
News, announcements, and enhancement details

You’ll also get information regarding our regional and virtual user group meetings, upcoming webinars, how-to blogs, and training. We invite you to participate and ask that you contact support@communitysite.ibm.com with any questions.

IBM Security QRadar SOAR Resources

Latest Discussions

Making a task private from a script

By: Pierre Dufresne , 11 hours ago

Hi I created a very simple playbook for a task object which is activated when the task is created and is of a specific name. The playbook only consists of one script to assign the task to a specific group and mark the task as private. The script only ...
RE: App function call from Resilient script

By: Leonardo Kenji Shikida , 15 hours ago

Can you call an API from a Resilient script? No you can't. Your resilient python script is very very limited. Libraries are restricted and your script cannot take more than a few seconds to complete, it cannot exceed a small number of interpreted lines ...
RE: App function call from Resilient script

By: Mark Aksen , 17 hours ago

How do I obtain the details for the DataTableDataREST API? And can I call the API from a Resilient script? Thanks, Mark ------------------------------ Mark Aksen ------------------------------

CVE Discovered in Python 3.6

By: Shane Curtin 3 days ago

A CVE has been discovered in Python. See https://exchange.xforce.ibmcloud.com/vulnerabilities/219613 . This affects all apps that are running on the UBI Base Image of Python 3.6, as the version of Python in that base image is 3.6.8 . Solution Update ...
Artifact enrichment with Sub-Playbook in v45

By: Sam Wang 29 days ago

Hi all, We are glad to announce a reusable playbook called Sub-Playbook is delivered in v45. Now, designers can create sub-playbooks to define repeatable activities to use within other playbooks. A Sub-Playbook is a set of packaged activities that ...

1 person likes this.
Release of v45.0 Python Libraries to PyPi

By: Shane Curtin one month ago

Our following Python Libraries have been updated to version 45.0.3150: https://pypi.org/project/resilient https://pypi.org/project/resilient-lib https://pypi.org/project/resilient-circuits https://pypi.org/project/resilient-sdk ...
IBM Security launches IBM QRadar Security SOAR platform for AWS

By: Teresa Rollins one month ago

Co-Authored Blog by: Nick Barrett & Teresa Rollins IBM Security QRadar SOAR (previously Resilient), is a Security Orchestration, Automation, and Response (SOAR) platform, is designed to streamline your Security Operations Center (SOC) with an automated ...

1 person likes this.
Create a generic enrichement playbook, and apply it on TOR enrichment integration

By: BENOIT ROSTAGNI 2 months ago

The purpose of this blog is to show how, from any integration that does artifact enrichment from the QRadar SOAR App Exchange , we can create a framework that will publish the right information, on the eye of the Analyst. Enrichment can be visible ...

1 person likes this.