Splunk SOAR

Community Activity

HTTP Post Loops (Modern editor) Hello,I have a fairly short question.In the classic editor this worked just fine but in the modern one it simply does... by samimbarek New Member in Splunk SOAR 10-29-2021 0 0	0	0
O365 Defender blocking I am trying to create a playbook where the first step is a manual block an email address in the restricted users por... by brandylee19931 Observer in Splunk SOAR 10-27-2021 0 0	0	0
Chaining action results and datapath issue Hi,Say we have an action (lets call it Action1) that returns this under data:[{"type": "type1", "target": "target val... by ponqersohn New Member in Splunk SOAR 10-18-2021 0 0	0	0
O365 Integration for SOAR (Ingest emails?) Hi all,Is there any app, method or guidance for ingesting emails directly form a O365 mailbox?So a use case for us wo... by EdgeSync Engager in Splunk SOAR 10-08-2021 0 2	0	2
Crowdstrike App in SOAR - Permissions? Hey there,I am looking to Configure the Crowdstrike OAuth API app inside my SOAR instance. To connect to Crowdstrike ... by EdgeSync Engager in Splunk SOAR 10-08-2021 0 1	0	1
Pass format block data to subplaybook Hi Team,I want to know if it is possible pass data present in a format block of one playbook to another playbook bein... by shaquibk Explorer in Splunk SOAR 09-23-2021 0 1	0	1
Deleting reports How can you delete reports that have been created on the /reports page?I have administrator rights but can't see any ... by bongo Explorer in Splunk SOAR 09-08-2021 1 3	1	3
Phantom MISP - searching by info/name I am trying to search for MISP events by their name, which is present in 'info' field. For this purpose I'm using 'ot... by dewu94 Explorer in Splunk SOAR 09-08-2021 0 6	0	6
Phantom MISP "Run Query" action I am attempting to use the "Run Query" action from the Phantom MISP app. PARAMETER REQUIRED DESCRIPTION TYPE ... by dphegarty New Member in Splunk SOAR 09-07-2021 0 2	0	2
Phantom - McAfee ATD I am trying to integrate McAfee ATD app in Phantom. I get the following error when I try to test the connectivity. Fi... by RupeshManohar New Member in Splunk SOAR 09-06-2021 0 0	0	0
Splunk Phantom Community Edition Registration approval pending Hello! I have a training with Splunk Phantom starting tomorrow morning and my approval is still pending. I need the O... by ga1nz New Member in Splunk SOAR 08-30-2021 0 1	0	1
Phantom - Testing Connectivity no response Hi All, I run the 'Testing Connectivity' on all Phantom apps and the response is as follows, showing no information (... by PwC-Kimmy Explorer in Splunk SOAR 08-23-2021 0 4	0	4
Splunk Phantom - Get Email Gmail Hi there!I have a splunk instance running in centos. In SOAR, I have implemented the APP connecting it through IMAP t... by jcandiatch2009 New Member in Splunk SOAR 08-18-2021 0 0	0	0
Download files from Phantom case via REST API Hello,I'm currently creating a Python script which takes a Splunk Phantom Case as input and creates an Incident Respo... by hariomenkel Explorer in Splunk SOAR 08-18-2021 1 5	1	5
SAML SSO Intergration Phantom with Okta Hi I am doing OKTA SAML integration with Phantom and getting the below error.SAML2 Authentication Error'NoneType' obj... by ramanpuri2510 Loves-to-Learn Lots in Splunk SOAR 08-12-2021 0 0	0	0
Splunk Phantom SAML SAML2 authentication error Signature missing for response We were configuring our phantom instance for saml sso login and we are encountering the following error.SAML2 authent... by eugeneAq Engager in Splunk SOAR 08-12-2021 0 2	0	2
Phantom Version Dependency Check Failed - Installing App Attempting to install VMRay 2.0 Phantom App but I'm getting "Phantom Version Dependency Check Failed" error message. ... by arentahmasian New Member in Splunk SOAR 08-10-2021 0 0	0	0
Getting failed to communicate with platform component: phantom_decided when try to save a playbook Hello,I'm currently exploring Splunk Phantom or Splunk SOAR. When I try to create a new playbook or copy and save any... by tekybala New Member in Splunk SOAR 08-06-2021 0 1	0	1
Get container timeline history via REST Hi.I need to extract container timeline events via the REST API in order to generate analyst, playbook and action tim... by bongo Explorer in Splunk SOAR 08-04-2021 0 1	0	1
How to add filed from raw data into artifacts when the original syslog was forwarded to phantom, some key filed(like srcIP/dstIP) was missing artifact. these key... by Qingguo Engager in Splunk SOAR 07-30-2021 0 1	0	1
quarantine device using ISE After integration with ISE 2.4 successfully , I test action of quarantine for a device , phantoms shows it has been ... by Qingguo Engager in Splunk SOAR 07-29-2021 0 0	0	0
Passing Variables Between Functions I'm attempting to pass a variable/value between custom functions in a playbook. I've done this before without issue, ... by Mr Loves-to-Learn Lots in Splunk SOAR 07-23-2021 0 0	0	0
phantom vault different filenames with same content have same vaultid hi phantom team,I have a simple use case to rename a filename in vault.As its immutable, I copied the contents to vau... by sunilpanda023 Path Finder in Splunk SOAR 07-21-2021 0 0	0	0
Playbook stops in between without completing Hi All,I am quite new to Phantom. I have written few plabooks which works perfectly as intended when run from the deb... by shaquibk Explorer in Splunk SOAR 07-12-2021 0 2	0	2
Bulk Resolution for Playbook Prompts? Hi All,Is there a way to simultaneously/bulk respond to multiple notifications generated by prompt actions, or an adm... by PistolShrimp Engager in Splunk SOAR 07-06-2021 0 1	0	1