punkrokk added a new version:
Quotev1.0.4
- added full docs
- added irflow api create_alert and close_alert wrappers
punkrokk added a new version:
Quotev1.0.4
- added full docs
- added irflow api create_alert and close_alert wrappers
punkrokk added a new version:
Quotev1.0.3
- Added full documentation
- Added create_alert and close_alert wrapper for DXL
punkrokk added a new version:
QuoteAdded Create and close alert endpoints to opendxl-irflow-service. Full docs now available:
Chris - that's actually helpful. I was starting to gather that. What is the method to generating the pydocs? Is that what is generated by opendxl bootstrap?
When trying to create my client (which works fine directly with the generic OpenDXL client), I get the following:
Traceback (most recent call last):
/opendxl-irflow-client/sample/basic/irflow_create_alert.py", line 25, in <module>
with IRFlowApiClient(config) as client:
AttributeError: __enter__
My understanding is that if I'm inheiriting the base dxl bootstrap client, this should work (since __enter__ should be available)
The two files involved are:
https://github.com/Syncurity/o…er/irflowclient/client.py
and
https://github.com/Syncurity/o…ic/irflow_create_alert.py
Any ideas what would cause this?
thanks for this!
punkrokk added a new solution:
Quotev0.1.0 - Prerelease - Add create_alert API call
punkrokk added a new solution:
Quotev0.1.0: Refactor request handlers with Base class to enable better structure when adding additional API endpoints to this service
v0.0.1: Create Alerts in IR-FLow.
For alot of repos I see that GitHub pages is used. Can anyone provide instructions to use the gh-pages branch to replicate shipping docs like on the opendxl-client-python - and others.
punkrokk added a new solution:
Quotev0.1.0: Refactor request handlers with Base class to enable better structure when adding additional API endpoints to this service
v0.0.1: Create Alerts in IR-FLow.
punkrokk added a new solution:
QuoteDisplay MoreSyncurity's DXL integration set provides access in IR-Flow to access McAfee ePO, McAfee Active Response and McAfee Threat Intelligence Exchange via openDXL. Capabilities include:
- TIE: Create, check and update file reputation status
- MAR: Perform searches of file activity
- ePO: Tag/Clear Tags, get agent details, set agent health status
v2, in progress will ship the IR-Flow REST API as a DXL Service.
Syncurity™ delivers an agile security orchestration, automation & response platform that reduces cyber risk. We make security operations centers (SOCs) more efficient and effective using tightly integrated alert and incident response workflows. The Syncurity IR-Flow solution is built by analysts for analysts to deploy within hours, and calibrate easily to the differences of every customer environment. IR-Flow uniquely incorporates humans into decision-making, and generates a detailed, immutable security “System of Record” that enables reporting and dashboards for process improvement, audit, and compliance demonstration.