This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Log in to ask a question

Is there any other solution to configure chronicle as a code instead of clickops?

Posted on 03-23-2023 06:19 AM
Rafal_Golab
New Member
Reply posted on --/--/---- --:-- AM

hi, maybe someone know if exist some tool / terraform provider / other solution which allow configure whole chronicle as a code instead of clickops?

0 3 443
0 Likes
3 REPLIES 3

Posted on --/--/---- --:-- AM
Rodney_Samuel
New Member
Reply posted on --/--/---- --:-- AM

If you are talking about SIEM, We are experimenting with Detection as Code. We are using the https://cloud.google.com/chronicle/docs/reference/detection-engine-api in github action to go through end-to-end deployment of a rule lifecycle. We will work harder over the next quarter on this and hopefully open source with the detections.

Posted on --/--/---- --:-- AM
Louis_Mesmin
Bronze 2
Bronze 2
Reply posted on --/--/---- --:-- AM

Hello !
Maybe the GitSync integration for Chronicle SOAR ?

0 Likes

Posted on --/--/---- --:-- AM
alexb471
Bronze 1
Bronze 1
Reply posted on --/--/---- --:-- AM

You may wish to check out this Terraform provider which has just been open sourced by Form3tech

https://github.com/form3tech-oss/terraform-provider-chronicle

0 Likes
Top Solution Authors
View all