Splunk SOAR

Community Activity

Defining object detail in REST queries? Hi I'm running REST queries to retrieve containers that need to be reprocessed in function of the values of some of t... by Iñigo Explorer in Splunk SOAR 02-21-2023 0 1	0	1
Has anyone else had problems connecting SOAR to CrowdStrike to ingest detections? Has anyone else had problems connecting SOAR to CrowdStrike to ingest detections? Our test connection is fine. We set... by andrewb Observer in Splunk SOAR 02-19-2023 0 3	0	3
Phantom MS Graph API for office 365 Hi there, we are trying to configure MS Graph API for Office 365 to process emails from mailboxes. Created an Azure E... by aiyede Engager in Splunk SOAR 02-17-2023 1 3	1	3
Has anyone ever reassigned SOAR objects between users? Hi folks,I'm evaluating a situation related to enabling SAML auth on SOAR but earlier I was using local accounts. Bec... by victor_menezes Communicator in Splunk SOAR 02-16-2023 0 1	0	1
How to Hyperlink in Splunk SOAR/Phantom Notes? I'm currently adding notes through a playbook via Python automation.I'll have a formatted string: f'<a href="http... by jasonr Engager in Splunk SOAR 02-15-2023 0 2	0	2
Why does SOAR Prompts Pop-Up? Within Splunk:Soar(Phantom), is there a way to have a prompt message pop-up for the user running the playbook, as opp... by 083R0N New Member in Splunk SOAR 02-15-2023 0 1	0	1
Is there documentation on Code Block Self.Name type of param? Probably a silly question but for the life of me can't find documentation - when we create a code block, how do we ca... by nongingerale Explorer in Splunk SOAR 02-14-2023 0 2	0	2
Is there a way to try 'except' functionality with playbook? Fairly new to writing playbooks within Phantom and so far havent found documentation for this yet:I'm trying to creat... by nongingerale Explorer in Splunk SOAR 02-14-2023 0 4	0	4
How to continue playbook after failed action run? I am writing a playbook that loops through a list of case ids to delete. This action fails after hitting 50 for the a... by kblaine Explorer in Splunk SOAR 02-10-2023 0 0	0	0
Is there anyway to get http request logs easily from Splunk created apps? Is there anyway to get http request logs easily from Splunk created apps? There is a failure in communicating w/ zsca... by Dave_Burns Path Finder in Splunk SOAR 02-08-2023 0 9	0	9
Ingest daemon troubleshooting: Where to look for the root cause? Hi folks, Our on-premise 5.3.1 SOAR's Ingest daemon is behaving funny in terms of memory management and was wondering... by BorkoG Engager in Splunk SOAR 02-06-2023 0 1	0	1
Is there any App or Functionality for recording a user response? Hi all,Here's an interesting use case, wonder if SOAR can handle it.You send a user an email from SOAR after running ... by CS_ Path Finder in Splunk SOAR 01-30-2023 0 2	0	2
How to reference a specific artifact in Phantom Playbook Visual Editor Hello, I'm looking to reference a specific artifact from the Phantom Playbook Visual Editor.For example, a Phantom: U... by zyun Explorer in Splunk SOAR 01-29-2023 0 5	0	5
How to retrieve the full raw object of app action? Hey, Is there a way to retrieve the raw object of an app action in phantom.collect? So I have an app, which returns t... by CS_ Path Finder in Splunk SOAR 01-26-2023 0 1	0	1
What is the process of compiling the .tgz file in windows? Hi, I have edited the inputs.conf file in app.tgz how we can compile it after editing the config file in windows. t... by AL3Z Builder in Splunk SOAR 01-22-2023 0 14	0	14
How to set required fields in Splunk SOAR Phantom for SNOW App? Hi Team, I have a requirement to integrate Phantom with SNOW. Now the challenge is in SNOW I require some extra fie... by joomla Engager in Splunk SOAR 01-17-2023 0 1	0	1
Running a playbook without Event id? Hi,i'm trying to create a set of playbooks to unit test other playbooks. is it possible to run a playbook without pro... by ansir Explorer in Splunk SOAR 01-16-2023 0 1	0	1
Can I extend the limits of output in my playbook? I'm using Splunk SOAR 5.3.3. When I add 10 outputs for a playbook, the warning text appear "Limit 10 outputs reached"... by peterng_ Engager in Splunk SOAR 01-11-2023 0 4	0	4
Why does Day-of-week decision won't return true? I'm trying to add a condition in a playbook (version 5.2.1.78411) that will test the current day of the week. At the ... by ben_r Engager in Splunk SOAR 01-06-2023 0 0	0	0
ThreatConnect SOAR App - How to change Intel Owner on Post Action? Hey all,Trying this as a hail mary, as opened a support case last week and had no response on it. We are trying to us... by CS_ Path Finder in Splunk SOAR 01-06-2023 0 2	0	2
Why am I unable to save Phantom Playbook? Hi, I am using the phantom ova to run my Phantom instance. I have just managed to run my playbooks when I previously ... by lynnn_ Loves-to-Learn Everything in Splunk SOAR 01-03-2023 0 2	0	2
Can we allow optional inputs in the prompt block? can the prompt block support optional inputs from a user? by ansir Explorer in Splunk SOAR 01-03-2023 0 1	0	1
Splunk Phantom - How to get authentication Credentials from existing app for custom function? I am trying to make a custom function for Cybereason, however as I am not so familiar with Python I was wondering if ... by lsethl New Member in Splunk SOAR 01-03-2023 0 1	0	1
SOAR Custom Function - check_cached_data- Does anyone know the status of Ian Forrest's Custom Function? Hi everyone, I just watched an excellent demo / tutorial ( https://my.phantom.us/video/78/ ) by someone called Ian Fo... by mark_wymer Path Finder in Splunk SOAR 12-30-2022 0 3	0	3
(Phantom/SOAR) How to download a file that was created during playbook execution? I have a playbook using the Splunk "run query" action block with the "attach_result" action which adds the query resu... by sgg Engager in Splunk SOAR 12-20-2022 1 0	1	0