IC SunsetThe developerWorks Connections platform will be sunset on December 31, 2019. On January 1, 2020, this community and its apps will no longer be available. More details available on our FAQ.
Topic
  • 5 replies
  • Latest Post - ‏2016-07-13T20:53:28Z by JonathanPechtaIBM
JonathanPechtaIBM
JonathanPechtaIBM
44 Posts

Pinned topic (Updated) QRadar REST API - Code Samples

‏2014-05-09T20:10:52Z |

Hello all,

 

This post contains the code samples that our QRadar software development team put together to assist customers with leveraging functions in the QRadar REST API. The code samples attached to this post are for educational purposes and we recommend that you use these to learn in a test or lab environment and not in your production environment.

 

  1. Is there a repository for QRadar API code samples?

    Yes, we recently created a GitHub repository for QRadar API code samples. As new versions of QRadar are released, a new link will be posted with code samples to help customers leverage APIs and features.

    - QRadar 7.2.1 Code Samples: https://github.com/ibmqradar/api-samples/tree/7.2.1
    - QRadar 7.2.2 Code Samples: https://github.com/ibmqradar/api-samples/tree/7.2.2
    - QRadar 7.2.3 Code Samples: https://github.com/ibm-security-intelligence/api-samples/tree/7.2.3
    - QRadar 7.2.4 Code Samples: https://github.com/ibm-security-intelligence/api-samples/tree/7.2.4
    - QRadar 7.2.5 Code Samples: https://github.com/ibm-security-intelligence/api-samples/tree/7.2.5
    - QRadar 7.2.6 Code Samples: https://github.com/ibm-security-intelligence/api-samples/tree/7.2.6
    - QRadar 7.2.7 Code Samples: https://github.com/ibm-security-intelligence/api-samples/tree/7.2.7
    - QRadar 7.2.8 Code Samples: https://github.com/ibm-security-intelligence/api-samples/tree/7.2.8

    These samples are provided for educational use. When you download the code samples, you are presented with the IBM developerWorks terms of use. You should read the terms of use before you download the code samples and you must agree to the terms to download the files.
  2. Where do I run the code samples?

    API sample scripts downloaded from the GitHub page should not be run directly on a QRadar appliance. The code samples downloaded from the GitHub page are intended to run on an outside system to poll data from QRadar. QRadar does not run Python 3.3 and the requirements for Python 3.3 is intended for the outside host that is running the code samples. QRadar cannot be upgraded to Python 3.3 as this will cause system-wide issues. Adminsitrators should never be installing any RPMs on their QRadar Console, unless the files come from IBM Fix Central.
     
  3. Are the code samples are specific to your QRadar version?

    Yes. Users can verify the software version on the Console from the Dashboard tab, by selecting the Help > About. Users and administrators should download the appropriate code samples for the QRadar version.
     
  4. When are new code samples posted?

    As major QRadar updates are released, new code samples will be attached to this post to help customers leverage new API features.
     
  5. What are the requirements to run the code samples?
     
    API code sample version QRadar Requirements Requirements for external host
    Samples 7.2.1

    QRadar 7.2.1 (any patch level)

    Python 3.3
    Samples 7.2.2

    QRadar 7.2.2 (any patch level)

    Python 3.3
    Samples 7.2.3

    QRadar 7.2.3 (any patch level)

    Python 3.3
    QRadar 7.2.4

    QRadar 7.2.4 (any patch level)

    Python 3.3
    QRadar 7.2.5

    QRadar 7.2.5 (any patch level)

    Python 3.3
    QRadar 7.2.6

    QRadar 7.2.6 (any patch level)

    Python 3.3
    QRadar 7.2.7 QRadar 7.2.7 (any patch level) Python 3.3

     
  6. How do I get help?

    If you have a question, comments, ideas, or feedback, you can open a new topic in the API forum and we will review your post. If you want feedback from a specific user, you can use @<forum_name> , for example @Jonathan.Pechta (IBM) ​will request a response from a specific user. When you use the at (@) symbol with a user that has (IBM) in their title, it alerts us to your question and we will receive an email with your forum question. 
     
  7. Do the samples work with different operating systems?

    Yes, we have tried the code samples posted below on Windows, Apple OSx, and Linux. If you have issues with a specific operating system please let us know.
     

 



 

  • JonathanPechtaIBM
    JonathanPechtaIBM
    44 Posts

    Re: QRadar REST API - Code Samples (New GitHub!)

    ‏2014-08-14T16:06:53Z  

    Update: Edited the code samples post to list the GitHub links for 7.2.1 and 7.2.2.

  • JonathanPechtaIBM
    JonathanPechtaIBM
    44 Posts

    Re: QRadar REST API - Code Samples (New GitHub!)

    ‏2014-09-12T20:33:19Z  

    Updated the post with a new link as the code samples for the QRadar 7.2.3 API are published to the GitHub.

  • JonathanPechtaIBM
    JonathanPechtaIBM
    44 Posts

    Re: QRadar REST API - Code Samples (New GitHub!)

    ‏2015-06-10T14:15:22Z  

    Updated this post to include a link to the QRadar 7.2.5 API code samples. 

  • JonathanPechtaIBM
    JonathanPechtaIBM
    44 Posts

    Re: (Updated) QRadar REST API - Code Samples

    ‏2016-01-07T14:22:08Z  

    Added links for the QRadar 7.2.6 code samples.

  • JonathanPechtaIBM
    JonathanPechtaIBM
    44 Posts

    Re: (Updated) QRadar REST API - Code Samples

    ‏2016-07-13T20:53:28Z  

    Updated to add a link to the API code samples for QRadar 7.2.7 to this post.