Giters

shanyangqu / resilient-community-apps

Community-provided extensions for Resilient

Home Page:https://developer.ibm.com/resilient/

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

Resilient Community Applications

These packages are installable components for the resilient-circuits framework.

Applications include,

  • rc-query-runner, a base for components that execute queries against another system and update the Resilient incident with search results. This includes a simple and powerful query definition file format.
  • Query-runner packages for searching QRadar, Splunk, LDAP, generic REST APIs, and more.
  • rc-webserver, a base for components that listen to incoming Web Service requests.
  • rc-cts, a simple Resilient Custom Threat Service
  • Custom Threat Service packages that implement several types of integration with third-party threat intelligence sources.
  • rc-shell-runner, a package for running shell scripts from Resilient rules.

Setup

Download the latest release packages here:

Latest Release

To install a package,

pip install <filename>.tar.gz

Refer to each package directory for pre-requisites and specific install instructions.

To list your installed packages,

resilient-circuits list

Contributing

These packages are provided "as-is", without any support. Please report issues using the Issues tab on GitHub.

Contributions are welcome.

About

Community-provided extensions for Resilient

https://developer.ibm.com/resilient/

License:MIT License

Languages

Language:Python 95.7%Language:Shell 4.3%Language:PowerShell 0.1%