Hello
@Cyber SOC Engineering,
Look at the Polling Interval and the Poll Initiate Date after the discover, by default its now, it can explain why you don't have any IOC feeded.
If you try 3 month i think you will sync some IOCs :), look at the capture :
If you are not sure, you can try using an IBM IoC list.
Note : You can use TAXII v2 now with the app.
Hope this helps,
Regards,
@zoldax
------------------------------
@zoldax
https://www.youracclaim.com/users/pascal-weber.029e134d/badges------------------------------
Original Message:
Sent: Tue July 05, 2022 07:16 AM
From: Cyber SOC Engineering
Subject: Qradar Threat Intelligence APP
Hi All,
We have recently installed Qradar Threat Intelligence APP , As exploring this APP I found that we have an options to add the external TAXII feeds. I have integrated below feeds but till now I am unable to see any feeds gets updated. Also, Please share your views any other threat feeds (from X-force and Anamoli) that can be integrated into Qradar.
------------------------------
Cyber SOC Engineering
------------------------------