XSOAR Security Management

XSOAR is an extended security orchestration, automation and response platform with native threat intel management.

By installing the LogScale Add-on in XSOAR, XSOAR can be configured to automatically:

  • Query LogScale for incidents.

  • Enrich incidents with additional contextual data.

  • Respond to incidents by setting up new LogScale alerts.


You can integrate LogScale and XSOAR by installing the LogScale add-on in your XSOAR system, which is located under SettingsIntegrationsServers & Services page in XSOAR under the name LogScale.

Here you will need to add a LogScale instance and configure it as described in XSOAR's Documentation on LogScale Integration. Configuration requires a personal API token for your LogScale instance, which is located under the User Settings page in the LogScale UI.