Splunk SOAR

Community Activity

Why has Phantom stop forward logs to the Splunk Enterprise? I use "the Splunk Phantom Remote Search app" to connect the Phantom to the Splunk Enterprise, it works fine until aft... by nareerat_pr Explorer in Splunk SOAR 08-25-2022 0 1	0	1
Splunk Phantom- How to monitor health of playbook? Hi fellas, How can we fetch details of a playbook like action_run_id, playbook_run_id and status. We need to monitor ... by Manojsai_3 New Member in Splunk SOAR 08-25-2022 0 1	0	1
Is there a way to create a daily report for the amount of times when a particular playbook is ran? Is there a way to create a daily report for the amount of times when a particular playbook is ran? by zgoggins New Member in Splunk SOAR 08-22-2022 0 1	0	1
Why do Phantom playbooks stop processing after 5.0.1v upgrade to 5.1.0? Hi team, Need help if anyone faced issues on phantom playbooks not processing events after upgrade from 5.0.1v to 5... by sharada Loves-to-Learn Everything in Splunk SOAR 08-11-2022 0 1	0	1
Has anyone had issues with Phantom upgrade from 4.10.7 to 5.0.1 version? Hello All, We are planning to upgrade phantom platform from 4.10.7 to 5.0.1 version. Can you please let us know the k... by sharada Loves-to-Learn Everything in Splunk SOAR 08-11-2022 0 1	0	1
Is there a way to catch errors coming from custom function block? Currently when I want to catch errors coming from arbitrary action block I rely on phantom.get_summary() looking at a... by GeorgeOrwell Explorer in Splunk SOAR 08-03-2022 0 1	0	1
Does a Lock for Playbooks function exist? Hello. I have a playbook that must be the only running instance of that playbook. I can't seem to find any "lock" f... by stauff Explorer in Splunk SOAR 07-27-2022 0 8	0	8
What are the list of credentials that are acceptable for Just in Time entry? What are the list of credentials that are acceptable for Just in Time entry?Or is there a way to add to that list whe... by Dave_Burns Path Finder in Splunk SOAR 07-27-2022 1 5	1	5
Why does Jira ticket ingestion fail due to attachment(s)? I have been seeing containers without any artefacts with jira 'on poll'. After comparison against those successfully ... by playbook New Member in Splunk SOAR 07-26-2022 0 0	0	0
Why are the alert options missing for Splunk App for SOAR Export on Splunk (non ES)? I installed the Splunk App for SOAR Export app on Splunk, and I can see two alert options in manage alerts, namely 'R... by geekf Path Finder in Splunk SOAR 07-26-2022 0 0	0	0
How to select the "create server" button for splunk_app_soar configuration? Have anyone ran across the following issue before? I am trying to implement the Splunk SOAR app but we are not able ... by TamishaJ Engager in Splunk SOAR 07-26-2022 0 1	0	1
How to create dynamic custom functions? Hoping someone can help me get past the last hurdle. I'm trying to create a custom function that dynamically calls ot... by Dave_Burns Path Finder in Splunk SOAR 07-25-2022 0 1	0	1
Is there any way to get any debug info inside this script? Hi,We need to use a preprocess script for the Crowdstrike APP but don't manage to have it working. We are interested ... by djacquens Path Finder in Splunk SOAR 07-22-2022 0 2	0	2
How to fix error with access token string? Am trying to access Crowdstrike Intel endpoint where oauth2 token is needed. When I test asset connectivity, I get be... by jeffminkah20 Observer in Splunk SOAR 07-21-2022 0 3	0	3
SOAR / Phantom creating 8 identical artifacts with the exception of tag value- Please advise I've created an alert in Splunk Enterprise and used the Splunk SOAR / Phantom plugin to call the action "Run a playbo... by joconnor Explorer in Splunk SOAR 07-21-2022 0 3	0	3
How to create a custom app from existing app? Hello, We currently utilize the Windows Defender ATP v 3.6.0 app in our Splunk SOAR Cloud instance. I've discovered ... by Gewch Engager in Splunk SOAR 07-20-2022 0 3	0	3
How to pass data between actions I have two actions linked together.The first one is a block with custom code where I want to list all of the files in... by GeorgeOrwell Explorer in Splunk SOAR 07-19-2022 0 5	0	5
How to query for containers in SOAR Hi all, I have a use case where i need to check for duplicate JIRA contents Basically, we are ingesting our JIRA into... by yw_soar New Member in Splunk SOAR 07-19-2022 0 0	0	0
Splunk SOAR and ServiceNow Hi All, ServiceNow supports multiple ticket types such as "RITM", "SCTASK", "INCIDENT". Our Splunk Cloud instance to... by sdintino_splunk Splunk Employee in Splunk SOAR 07-15-2022 0 2	0	2
Registration pending for community edition of Phantom download Hi,I have registered for Splunk Phantom Community edition download 3 days ago. However, still the approval is pending... by rwahidur2 New Member in Splunk SOAR 07-14-2022 0 1	0	1
Is there a way to save and run a playbook without commiting changes to repo? I would like to run my playbooks after the changes have been introduced without making commit messages by GeorgeOrwell Explorer in Splunk SOAR 07-14-2022 0 1	0	1
Is there a way to get all Custom Lists with phantom api? I'm looking for a way to collect all custom lists. While I can do so individually for every Custom List with `phanto... by GeorgeOrwell Explorer in Splunk SOAR 07-11-2022 0 1	0	1
Is there a way to synchronize Custom Lists to git? So, I'm looking for a way to synchronize Custom Lists to git the same way Playbooks and Custom Functions are synchron... by GeorgeOrwell Explorer in Splunk SOAR 07-06-2022 0 1	0	1
Can you stop SOAR from calling a function as "join_*"? Hey all, So I have some playbooks which were working fine previously, but I don't know if something has changed on SO... by CS_ Path Finder in Splunk SOAR 07-04-2022 0 2	0	2
SOAR: Is it possible to retrieve the (splunk soar) instance details inside a playbook? Hi All, is it possible to retrieve the (splunk soar) instance details inside a playbook? For instance when sending an... by goncalocoelho Path Finder in Splunk SOAR 06-29-2022 0 2	0	2