Splunk Enterprise Security

Symantec MSS integration with Splunk for orchestration and Incident Management

New Member

Dear ALL ,

I am searching a procedure to pull and update the incidents from Symantec MSS created by their SOC

they have SWS(secure web service) and API defined with SOAP messages to access tickets and incident.

I know I can fetch it through Rest API with SOAP over HTTPS which require python script.

If anybody know about this type pf integration please help for scripting and rest configuration

0 Karma
Get Updates on the Splunk Community!

Enterprise Security Content Update (ESCU) | New Releases

In the last month, the Splunk Threat Research Team (STRT) has had 2 releases of new security content via the ...

Announcing the 1st Round Champion’s Tribute Winners of the Great Resilience Quest

We are happy to announce the 20 lucky questers who are selected to be the first round of Champion's Tribute ...

We’ve Got Education Validation!

Are you feeling it? All the career-boosting benefits of up-skilling with Splunk? It’s not just a feeling, it's ...