3 Use Cases for SOAR's Automation Capabilities For Your Enterprise

While there are countless use cases, here are three security use cases where SOAR tools can react faster than manual intervention and empower your SOC teams to better manage threats.

Ragnar Locker Continues to Breach the Cybersecurity of Major Companies

Infrastructure companies, which have seen a record rise in ransomware attacks targeting their systems since 2019, have remained the primary targets for the operators behind Ragnar Locker.

Expect to see a rise of Ransomware Attacks on Infrastructure in 2022

Cybersecurity breaches and ransomware attacks in particular are costing organisations a fortune.

How to Configure and Install AttackIQ on Linux and Windows

In the following blog post, we detail how to configure AttackIQ on a Linux machine as well as set up Agents on Windows.

How to fetch logs for Cortex XSOAR

Cortex XSOAR keeps a detailed list of logs that are automatically generated when activities take place in the environment, such as when issues arise or for verifying system information.

What is SOAR? Know Your Security Automation Solutions

SOAR is an acronym for Security Orchestration, Automation and Response.

How to Set Up a Cybereason Test Environment with Virtual Machine

This post describes how to set up a test environment over a virtual machine (VM) using the Cybereason console.

How to Fetch Logs in Your ServiceNow App

You can retrieve your logs as well as your log archives using the app. We’ve detailed the main steps you’ll need below.

State of SIEM: A Look at 2021 Ransomware Attacks and 2022’s Promise

Industry insiders and commentators are highlighting 2022 as the year when cybersecurity comes home.

Publishing Your QRadar App in the IBM Security App Exchange

Custom integration apps for QRadar can be submitted to the IBM Security App exchange for greater usage and visibility

QRadar Integrations: High-Level Design and Architecture Overview

This post outlines the software design and architecture necessary for building a custom integration application between QRadar and a generic security sensor.

How to Fetch Logs in Your Splunk App

Splunk is a versatile app that keeps records of most events that take place within your app. Find out how to fetch your Splunk logs here.

Steps to Installing the Universal REST API Protocol in IBM QRadar

Before we can use the Universal REST API DSM and Protocol in QRadar, we have to install the Protocol so that it appears in the list of supported protocols. The installation is usually straightforward, but we have seen some issues with installing the protocol on some machines.

Is your Security Application connected and updated?

Are you using the latest app version for your integration? How do you find out?

How to get your enterprise's security data into IBM QRadar

Before you can act on threats, you have bring your security data into your QRadar deployment.

Troubleshooting a Resilient App

There are several ways to verify the successful operation of a function. You can also use these ways to troubleshoot a problem with your Resilient app.