XSOAR Security Management
XSOAR is an extended security orchestration, automation and response platform with native threat intel management.
By installing the LogScale Add-on in XSOAR, XSOAR can be configured to automatically:
Query LogScale for incidents.
Enrich incidents with additional contextual data.
Respond to incidents by setting up new LogScale alerts.
Installation
You can integrate LogScale and XSOAR by installing the LogScale add-on
in your XSOAR system, which is located under
Settings →
→
&
page in XSOAR under the name
Humio.
Here you will need to add a LogScale instance and configure it as
described in
XSOAR's
Documentation on Humio Integration. Configuration requires an
API key for your LogScale instance, which is located under the
/settings page in the LogScale
UI. Example
https://humio.example.com/settings.