Splunk SOAR

Community Activity

Documentation on tenant REST API endpoint Hey all. We're evaluating Splunk SOAR and are looking at highly automated configuration management. Part of the setup... by dmw New Member in Splunk SOAR 11-16-2021 0 0	0	0
Phantom: Is it possible to update nginx from v1.19.2 to v1.20.1? Hi, I'm using phantom v4.10.3.51237 and my VA team found a security vulnerability that is "nginx Byte Memory Overwrit... by nareerat_pr Explorer in Splunk SOAR 11-16-2021 0 1	0	1
How to login to Phantom software after installing phantom? I've just installed Phantom software according to link text. My operating system is Centos 7. But I don't know what's... by hiahiahia Explorer in Splunk SOAR 11-14-2021 0 5	0	5
Splunk HTTP app failing to authenticate w/ OAuth I'm configuring the SOAR/Phantom app - Splunk HTTP. I've set it up to use OAuth, provided the authentication URL and ... by knot9 Engager in Splunk SOAR 11-09-2021 0 0	0	0
HTTP Post Loops (Modern editor) Hello,I have a fairly short question.In the classic editor this worked just fine but in the modern one it simply does... by samimbarek New Member in Splunk SOAR 10-29-2021 0 0	0	0
O365 Defender blocking I am trying to create a playbook where the first step is a manual block an email address in the restricted users por... by brandylee19931 Observer in Splunk SOAR 10-27-2021 0 0	0	0
Chaining action results and datapath issue Hi,Say we have an action (lets call it Action1) that returns this under data:[{"type": "type1", "target": "target val... by ponqersohn New Member in Splunk SOAR 10-18-2021 0 0	0	0
O365 Integration for SOAR (Ingest emails?) Hi all,Is there any app, method or guidance for ingesting emails directly form a O365 mailbox?So a use case for us wo... by EdgeSync Engager in Splunk SOAR 10-08-2021 0 2	0	2
Crowdstrike App in SOAR - Permissions? Hey there,I am looking to Configure the Crowdstrike OAuth API app inside my SOAR instance. To connect to Crowdstrike ... by EdgeSync Engager in Splunk SOAR 10-08-2021 0 1	0	1
Pass format block data to subplaybook Hi Team,I want to know if it is possible pass data present in a format block of one playbook to another playbook bein... by shaquibk Explorer in Splunk SOAR 09-23-2021 0 1	0	1
Deleting reports How can you delete reports that have been created on the /reports page?I have administrator rights but can't see any ... by bongo Explorer in Splunk SOAR 09-08-2021 1 3	1	3
Phantom MISP - searching by info/name I am trying to search for MISP events by their name, which is present in 'info' field. For this purpose I'm using 'ot... by dewu94 Explorer in Splunk SOAR 09-08-2021 0 6	0	6
Phantom MISP "Run Query" action I am attempting to use the "Run Query" action from the Phantom MISP app. PARAMETER REQUIRED DESCRIPTION TYPE ... by dphegarty New Member in Splunk SOAR 09-07-2021 0 2	0	2
Phantom - McAfee ATD I am trying to integrate McAfee ATD app in Phantom. I get the following error when I try to test the connectivity. Fi... by RupeshManohar New Member in Splunk SOAR 09-06-2021 0 0	0	0
Splunk Phantom Community Edition Registration approval pending Hello! I have a training with Splunk Phantom starting tomorrow morning and my approval is still pending. I need the O... by ga1nz New Member in Splunk SOAR 08-30-2021 0 1	0	1
Phantom - Testing Connectivity no response Hi All, I run the 'Testing Connectivity' on all Phantom apps and the response is as follows, showing no information (... by PwC-Kimmy Explorer in Splunk SOAR 08-23-2021 0 4	0	4
Splunk Phantom - Get Email Gmail Hi there!I have a splunk instance running in centos. In SOAR, I have implemented the APP connecting it through IMAP t... by jcandiatch2009 New Member in Splunk SOAR 08-18-2021 0 0	0	0
Download files from Phantom case via REST API Hello,I'm currently creating a Python script which takes a Splunk Phantom Case as input and creates an Incident Respo... by hariomenkel Explorer in Splunk SOAR 08-18-2021 1 5	1	5
SAML SSO Intergration Phantom with Okta Hi I am doing OKTA SAML integration with Phantom and getting the below error.SAML2 Authentication Error'NoneType' obj... by ramanpuri2510 Loves-to-Learn Lots in Splunk SOAR 08-12-2021 0 0	0	0
Splunk Phantom SAML SAML2 authentication error Signature missing for response We were configuring our phantom instance for saml sso login and we are encountering the following error.SAML2 authent... by eugeneAq Engager in Splunk SOAR 08-12-2021 0 2	0	2
Phantom Version Dependency Check Failed - Installing App Attempting to install VMRay 2.0 Phantom App but I'm getting "Phantom Version Dependency Check Failed" error message. ... by arentahmasian New Member in Splunk SOAR 08-10-2021 0 0	0	0
Getting failed to communicate with platform component: phantom_decided when try to save a playbook Hello,I'm currently exploring Splunk Phantom or Splunk SOAR. When I try to create a new playbook or copy and save any... by tekybala New Member in Splunk SOAR 08-06-2021 0 1	0	1
Get container timeline history via REST Hi.I need to extract container timeline events via the REST API in order to generate analyst, playbook and action tim... by bongo Explorer in Splunk SOAR 08-04-2021 0 1	0	1
How to add filed from raw data into artifacts when the original syslog was forwarded to phantom, some key filed(like srcIP/dstIP) was missing artifact. these key... by Qingguo Engager in Splunk SOAR 07-30-2021 0 1	0	1
quarantine device using ISE After integration with ISE 2.4 successfully , I test action of quarantine for a device , phantoms shows it has been ... by Qingguo Engager in Splunk SOAR 07-29-2021 0 0	0	0