Can someone help with this?
We have removed the old connector as its been deprecated, but the new
connector isnt ingesting IOC detections into the SOAR instance.
Do we need to explicitly mention in Dynamic List while integrating the connector.
+4- Bronze 3
Hey,
I think you need this because the old function in the old Connector isn't avaible anymore.
https://cloud.google.com/chronicle/docs/detection/ati-curated-detections?hl=en
Regards,
+9hi, i think you are referring to Chronicle integration and IOC connector in particular - yes, IOC connector was deprecated, you should use Chronicle Alerts Connector with this integration, and as for IOCs - i also suggest checking on how to get IOCs through SIEM rules ( i dont have details on that)
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.