SOAR Integrations with REST API v1.3

Updated 1 year ago by TruSTAR

You can build a custom integration btween the TruSTAR platform and a SOAR tool that exchanges data between the two platforms. This can provide enriched data that the SOAR tool can use in automating responses to security threats. The integration can also support the sharing of that enriched data with multiple teams in an organization as well as with external teams.

Related Link: Partner Resources explains configuration details required for all integrations.

TruSTAR recommends including these commands in your SOAR integration:

Optional Commands

You can use these commands to add functionality:

You can include two additional commands that support the triage of Phishing emails:

You must have the Phishing Triage feature activated in TruSTAR to use these commands.

How Did We Do?