We are excited to announce the availability of Google Cloud Security Customer Success subscriptions. Optimize ...
Is there a Chronicle Trial for the SIEM part that allows you to test ingestions?
Goodmorning,I've got a little issue in my infrastructure. We've got a Test environment SOAR , there are some u...
Is there a way to automate it when there are multiple instances in one Environment? For example, 3 tenants wit...
I created remote agent in SOAR>Advance>Remote Agentand how can I test to execute chronicle example test case r...
Hey guys,I understand keeping a few older python versions available for integrations, but currently the only v...
Hello,I'm looking into possible solutions to have a use case as if the playbook attached to case, and that plb...
Hello,Is there any way to create a loop action inside the SOAR playbook?
I'm currently using the below to get all closed cases within our SOAR platform - https://cloud.google.com/chro...
There are a few situations where it would be useful to write data to the file system, but my experience is tha...
Hi, If I want to send\ receive emails to\ from customers via a dedicated mailbox, what would be the best way t...
I have a doubt, I am making a playbook in which I use two actions (Get similar Case), in one of them I look at...
We have a Chronicle forwarder set up, and we plan to send logs to it. Logs will be sent over the internet, so ...
Good afternoon,I am currently trying to implement case assignments based on different shifts amongst the team ...
Does anyone have some guidance on how to configure integration between Chronicle SOAR and Zscaler ZIA? From th...
HiI was wondering if there is an official list of activityKind?I see activitykind in wall data json for a give...
Hey Team,Is it possible to create a clickable link in Incidents Comments / Instructions or Insights.For exampl...
Hey All!Can someone explain what the 'case_ids_free_search' parameter is used for here? - https://cloud.google...
Does anyone know how to create such a dashboard or event get the data in order to track Time to Respond and Ti...
Where can I find the license types for Chronicle (community plan enterprise plan)?
Hi,we have several sources of alerts integrated in the SOAR. We'd like that, when we close the case in the SOA...
When I click the my user icon (I'm an admin) in the upper-right, there is a "localization" option that allows ...
Hey Folks, Has anybody integrated Chronicle SIEM with MISP or a similar platform like OpenCTI? I'm pretty sure...
I have two feature requests if anyone is interested. Also the API is pretty well documented if you don't want ...
HiI am getting 401 for call to casesearcheverything api callThe calls works for my company domain swagger but ...
Anyone have a good experience ingesting Windows logs into Chronicle? I’ve heard nxlogs , cribl, etc. E.g. can ...
HelloI'm looking for a solution into using CaseSearchEverything API. As I understand1) it returns all cases ba...
Hey Team, Is there any way through which we can get the raw logs ( not UDM mapped) from Chronicle SIEM back to...
Hey,I`m struggling with some issues when trying to present insight on the case\ alert page after enrichment ac...
Part 1: Dipping Your Toe into SOAR: Understanding the Basics The Ocean of Security Threats The relentless barr...
User | Likes Count |
---|---|
21 | |
8 | |
7 | |
6 | |
5 |