QRadar API endpoint
/siem/offenses retrieve a list of offenses currently in the system. You can use the interactive API available in the QRadar system itself. The url will be
https://<qradar_ip_or_hostname>/api_docQRadar latest API document:
https://ibmsecuritydocs.github.io/qradar_api_17.0/Older version reference:
https://www.ibm.com/docs/en/qsip/7.5?topic=api-endpoint-documentation-supported-versionsAlso, if you are interested in getting the alerts programatically, then you can refer to the api code sample here =>
https://github.com/IBM/api-samplesLook in the directory
siem which contains example related to offense endpoint
/siem/offensesHope it helps.
Thanks,
Prabir
------------------------------
Prabir Meher
------------------------------
Original Message:
Sent: Mon November 07, 2022 11:46 PM
From: Arunachalam Ramaiah
Subject: Connection to IBM QRadar using external applications
Hi Team ,
I would like to understand any solution connect IBM QRadar from external application (programming solution) and read the alerts data
Please help me to any API set or any other solution to achieve it
Regards
Arun
------------------------------
Arunachalam Ramaiah
------------------------------