This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Log in to ask a question

Job with conectors

Posted on 01-28-2025 05:03 AM
olivacris98
Bronze 1
Bronze 1
Reply posted on --/--/---- --:-- AM

Is it possible to create a job and after executing it can connect to a connector and create a manual alert?

In such a way that we can have a relationship between them?

I am not using a specific connector like crowdstrike or chronicle, just creating alerts based on a manual connector made by me? no apis

olivacris98_0-1738069216634.png

In this way we can observe a job that only queries the cases of a specific tag and if they bring information, an alert is created.

 

I would appreciate your response

¡Thank you!

 

0 1 161
Topic Labels
0 Likes
1 REPLY 1

Posted on --/--/---- --:-- AM
Kyle_M
Staff
Reply posted on --/--/---- --:-- AM

Hi @olivacris98.

I'm unaware of a way to easily call a connector and pass data to it from a job.  However, here are two suggestions to accomplish the use case as I understand it. 

1. Use the connector to run the logic to query cases that contain a specific tag.  You can likely take the logic from the job and implement it in the connector.  This will be a much easier approach as you will only be dealing with a connector.  

2. If you prefer the job, you can leverage the create_case() SDK call to create a case from the job.  This will eliminate the need for the connector and would still create an alert: https://cloud.google.com/chronicle/docs/soar/reference/siemplify-module#create_case

 

Let me know if you have additional questions! 

0 Likes
Top Solution Authors
View all