Hi guys, We have created a module on SOAR, and you can think of it as
containing IP addresses, domains, etc. We want to obtain these values as
a text file URL or as an accessible list. Is there a way to do this
without creating a file(like ip.txt) wi...
Hi all, We've implemented IOC integration with virustotal and we are
able to get a result about verdict. We want to write a rule using these
results, for example, regarding malicious and suspicious ones. Is this
possible? Has anyone tried this before...
Hi guys, I established an impersonation connection with the Onprime
exchange, but I am receiving an authorisation error during search/delete
operations. I did not encounter any issues when testing in a different
environment. Has anyone else experienc...
Hi guys, We wanted to upgrade the Supervisor from version 7.2.6 to
version 7.3.5, but the upgrade process was still ongoing after 5 hours.
We have performed many upgrades before, but we have never encountered
such a long process and believe this is n...
Hi guys, I have multiple Windows machines and need to collect logs from
them using OMI. Configuring each one individually is very difficult.
Therefore, I want to use a script to apply the configuration to all
machines from one machine. I am consideri...
Hi @jankit6 , We have previously implemented these documents, and we
have the necessary permissions. We have two different environments here;
while we do not encounter any issues in the test environment, we do
encounter issues in the other environmen...
As I mentioned, I ran the configFSM.sh command and changed the DNS
server, but I received a ‘system is already licensed’ error during the
installation process.
Hi @aebadi @Himanshu735, I need to change the DNS, I ran this command
but received the error ‘system is already licensed’ and changed it in
/etc/resolve.conf but it didn't take the changes. What can we do?
Hi @Secusaurus We are in an Enterprise setup, and as I mentioned, we can
see these logs in Analytics, and they are even being parsed. There is no
NAT in between. Even if there were, if we can see these logs arriving in
the SIEM and the assigned Colle...
