SOCRadar v2.3.0: Add complete integration suite#43732
SOCRadar v2.3.0: Add complete integration suite#43732Radargoger wants to merge 36 commits intodemisto:contrib/Radargoger_socradar-pack-v2.2.2from
Conversation
It is very important to new joiner
content-bot
added
Partner-Approved
Contribution Form Filled
content-bot
changed the base branch from
master
to
contrib/Radargoger_socradar-pack-v2.2.2
|
Thank you for your contribution. Your generosity and caring are unrivaled! Make sure to register your contribution by filling the Contribution Registration form, so our content wizard @kamalq97 will know the proposed changes are ready to be reviewed. |
|
Hi @Radargoger, thanks for contributing to the XSOAR marketplace. To receive credit for your generous contribution please follow this link. |
🤖 AI-Powered Code Review AvailableHi @kamalq97, @MosheEichler, you can leverage AI-powered code review to assist with this PR! Available Commands:
|
Radargoger
changed the title
- Fix README.md markdown formatting for pre-commit compliance - Update pack version from 2.2.2 to 2.3.0 - Rename release notes: 2_2_2.md -> 2_3_0.md - Add missing sections: SOCRadar Incidents, Incidents v4 - Fix header spacing and consistent formatting - Correct support email to operation@socradar.io
…content into socradar-pack-v2.2.2
|
approved |
|
Hi @MosheEichler and @kamalq97 , I have finalized all the necessary steps for this contribution. The PR is now ready to be reviewed and merged. Completed Actions: Pre-commit Checks: All local and CI pre-commit tests are now passing (including ruff, black, mypy, and markdownlint). Formatting & Linting: Resolved all trailing whitespace, line length, and Python 3.9+ type hint requirements. Secrets Detection: All dummy data and false positives have been addressed; the secrets_detection check is clear. Partner Approval: The contribution has been marked as Partner-Approved. Registration: The Contribution Registration Form has been filled and verified (label is active). Documentation: Comprehensive READMEs and Release Notes (v2.3.0) are included and follow XSOAR standards. All integrations (Rapid Reputation, IoC Enrichment, and Threat Feed) are production-ready and fully tested. the PR is ready for your final review. Thank you! |
5 participants
Contributing to Cortex XSOAR Content
Make sure to register your contribution by filling the contribution registration form
The Pull Request will be reviewed only after the contribution registration form is filled.
Status
Related Issues
Description
This PR adds three new integrations to the SOCRadar pack (v2.2.2):
SOCRadar Rapid Reputation - Fast reputation checking for IPs, domains, URLs, and file hashes with bulk support (up to 100 indicators) and automatic rate limiting.
SOCRadar IoC Enrichment - Deep threat intelligence enrichment with signal strength, confidence levels, activity labels, premium feeds, relations, and optional AI insights.
SOCRadar Threat Feed - Collection-based IoC feed integration for automated indicator ingestion using collection UUIDs with incremental feed capability and comprehensive geolocation data.
All integrations follow Cortex XSOAR best practices, include comprehensive documentation, and are production-ready.
Must have
Changes
Integrations/FeedSOCRadarThreatFeed/(new)Integrations/SOCRadarRapidReputation/(new)Integrations/SOCRadarIoCEnrichment/(new)pack_metadata.jsonto version 2.2.2README.mdwith all three integrationsReleaseNotes/2_2_2.mdTesting
All integrations have been tested with valid SOCRadar API keys:
relates: https://jira-dc.paloaltonetworks.com/browse/CIAC-16413