SOCRadar Incidents for SOAR app icon

SOCRadar Incidents for SOAR

Ingest SOCRadar threat intelligence incidents (API v4) into Splunk SOAR with deduplication, rate-limit handling, and state-based polling.

Built by SOAR Community
soar product badge
Latest Version 1.0.0
June 9, 2026
Compatibility
SOAR On-Prem, SOAR Cloud
Platform Version: 8.6, 8.5, 8.4, 8.0, 7.2, 7.1, 7.0, 6.4, 6.3
Rating

0

(0)

Log in to rate this app
Support
SOCRadar Incidents for SOAR support icon
Not Supported
Ingest SOCRadar threat intelligence incidents (API v4) into Splunk SOAR with deduplication, rate-limit handling, and state-based polling.

Supported Actions

  • test connectivity: Validate the asset configuration for connectivity using supplied credentials
  • on poll: Ingest SOCRadar incidents with deduplication and state management
  • get incident: Retrieve a single SOCRadar incident by alarm ID
  • update status: Update the status of a SOCRadar alarm
  • change severity: Change the severity of a SOCRadar alarm

Categories

Threat Intel

Created By

SOAR Community

Source Code

socradarincidents(Opens new window)

Type

connector

Downloads

10

Licensing

Apache License Version 2.0(Opens new window)

Splunk Answers

Ask a question about this app listing(Opens new window)

Resources

Log in to report this app listing