List of Contributions

Dastagirsab Mulla

Contact Details

My Content

1 to 20 of 24 total
Posted By Dastagirsab Mulla Wed February 24, 2021 05:23 AM
Found In Egroup: IBM Security QRadar SOAR
\ view thread
Hi, Thanks for this information, I will consider it. ------------------------------ Dastagirsab Mulla ------------------------------
Posted By Dastagirsab Mulla Wed February 24, 2021 12:34 AM
Found In Egroup: IBM Security QRadar SOAR
\ view thread
Thank you 'Sean Mc Cann' and 'Burak' for your valuable feedback. I finally achieved my objective using circuit function, below is the summary of query I used in function. ref_time = int(time.time() - 48 * 60 * 60) * 1000 # milliseconds queryDTO = ('filters': [ ('conditions': [ ('field_name': ...
Posted By Dastagirsab Mulla Fri February 19, 2021 04:56 AM
Found In Egroup: IBM Security QRadar SOAR
\ view thread
Thank you very much for your response, I will try this with function in circuits. ------------------------------ Dastagirsab Mulla ------------------------------
Posted By Dastagirsab Mulla Fri February 19, 2021 02:43 AM
Found In Egroup: IBM Security QRadar SOAR
\ view thread
Here is detailed attachment ------------------------------ Dastagirsab Mulla ------------------------------
Posted By Dastagirsab Mulla Fri February 19, 2021 02:42 AM
Found In Library: IBM Security SOAR
Posted By Dastagirsab Mulla Fri February 19, 2021 02:26 AM
Found In Library: IBM Security SOAR
Posted By Dastagirsab Mulla Fri February 19, 2021 02:26 AM
Found In Egroup: IBM Security QRadar SOAR
\ view thread
Thank you Burak, It worked after small change in time import, I used below code to get time from java.util import Date dt_now = Date() time = dt_now.getTime() But my code is working well in Pre Production where we have less number of incidents, but it getting failed on production may be due ...
Posted By Dastagirsab Mulla Thu February 18, 2021 05:09 AM
Found In Egroup: IBM Security QRadar SOAR
\ view thread
Hi, I am trying to build a query which get all the incidents closed in last 48 hours, I can use status but how can I also use time in this query to lookup only last 48 hours incidents instead of searching all closed incidents. query_builder.equals(fields.incident.plan_status, "C") Please help ...
Posted By Dastagirsab Mulla Sat May 09, 2020 11:37 AM
Found In Egroup: IBM Security QRadar SOAR
\ view thread
Recently we updated to v35, after update we are facing strange issue in Service Now Integration. We can create SNOW ticket from Resilient but same we are not able to update comments or attachment, while doing it gives below exception 2020-05-09 17:09:12,933 INFO [snow_note_actions] Nothing to do. ...
Posted By Dastagirsab Mulla Sat May 09, 2020 11:33 AM
Found In Egroup: IBM Security QRadar SOAR
\ view thread
Recently we updated to v35, after update we are facing strange issue in Service Now Integration. We can create SNOW ticket from Resilient but same we are not able to update comments or attachment, while doing it gives below exception 2020-05-09 17:09:12,933 INFO [snow_note_actions] Nothing to do. ...
Posted By Dastagirsab Mulla Fri January 17, 2020 09:16 AM
Found In Egroup: IBM Security QRadar SOAR
\ view thread
Is it possible to edit HTML Block using script? As I can see it does not have any API like other fields. I have requirement to edit this block based on some condition instead of keeping static value. ------------------------------ Dastagirsab Mulla ------------------------------
Posted By Dastagirsab Mulla Wed October 16, 2019 01:41 AM
Found In Egroup: IBM Security QRadar
\ view thread
Hi Anthony, Thank you very much for this reply. I thought there may have some other ways to change appliance type without rebuild. Regards Dastagirsab Mulla ------------------------------ Dastagirsab Mulla ------------------------------
Posted By Dastagirsab Mulla Mon October 14, 2019 06:36 AM
Found In Egroup: IBM Security QRadar
\ view thread
One of our Appliance 1604 is unused, so we are planning to convert this to AppHost, anyone know how to convert this appliance to AppHost? ------------------------------ Dastagirsab Mulla ------------------------------
Posted By Dastagirsab Mulla Thu August 22, 2019 09:50 AM
Found In Egroup: IBM Security QRadar SOAR
\ view thread
I have requirement to export field values of incidents created in last 24 hours to external source using REST API, like 'Incident_name', 'create_date', 'incident_status', etc. Please anyone suggest me how to do it? ------------------------------ Dastagirsab Mulla ----------------------------- ...
Posted By Dastagirsab Mulla Mon August 19, 2019 10:35 AM
Found In Egroup: IBM Security QRadar SOAR
\ view thread
Thank you very much it really helped me. In same way if I want to GET data from field and use it for external integration, what will be the syntax? ------------------------------ Dastagirsab Mulla ------------------------------
Posted By Dastagirsab Mulla Wed August 14, 2019 07:46 AM
Found In Egroup: IBM Security QRadar SOAR
\ view thread
We are planning to get SNOW ticket status into resilient custom field, what is the resilient REST API end point to perform this action. ------------------------------ Dastagirsab Mulla ------------------------------
Posted By Dastagirsab Mulla Fri August 02, 2019 09:17 AM
Found In Egroup: IBM Security QRadar SOAR
\ view thread
How we can control action 'Incident Close', example display this in action menu only when certain tasks are completed or deny closer with helper message based on some field value. ------------------------------ Dastagirsab Mulla ------------------------------
Posted By Dastagirsab Mulla Wed June 26, 2019 06:40 AM
Found In Egroup: IBM Security QRadar SOAR
\ view thread
Artifact background colour can be changed through script like threat source change it when there is hits? how to do it? ------------------------------ Dastagirsab Mulla ------------------------------
Posted By Dastagirsab Mulla Fri June 07, 2019 01:42 AM
Found In Egroup: IBM Security QRadar SOAR
\ view thread
Thanks for your reply, I did tried that but as I said got error "-bash: resutil: command not found" may be resutil module missing in my resilient circuit server? ------------------------------ Dastagirsab Mulla ------------------------------
Posted By Dastagirsab Mulla Thu June 06, 2019 10:08 AM
Found In Egroup: IBM Security QRadar SOAR
\ view thread
Hi, Can custom threat service can be implemented using resilient circuit running on integration server? Or it should be implemented only on resilient appliance server ? I am getting "resutil" not found error on integration server while registring ------------------------------ Dastagirsab Mulla ...