This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Announcements
Webinar May 14th: Gemini's generative AI within Google SecOps
Webinar May 29th: Log Ingestion: Bindplane + Google SecOps
Log in to ask a question

How to create test cases to validate SOAR playbooks?

Posted on 03-25-2025 08:36 PM
ibr1
New Member
Reply posted on --/--/---- --:-- AM

I created a bunch of SOAR playbooks to detect auth issues? But SecOps says "There are no available test cases."  How do you validate the test cases in this scenario?

0 1 67
Topic Labels
0 Likes
1 REPLY 1

Posted on --/--/---- --:-- AM
ylandovskyy
Staff
Reply posted on --/--/---- --:-- AM

Hey @ibr1 ,

Test cases can be created from existing Alerts. Here is how you would do it:

ylandovskyy_0-1742989663881.png

Note: you will need to refresh the playbook page after test case will be created for it to be available in the simulation mode.

Top Solution Authors
View all