Skip to main content

Version: On-Premise 2.4

QRadar Get Offense Events

Activity Description

Gets a list of QRadar events/flows that are connected to the specified offense.

Output

A ResultSet of all the connected events/flows to the specified offense.

Settings

Module Name – The name of the IBM QRadar module that will execute this activity.
Offense ID – The ID of the offense.
Example: %offenceID%
Event Type – The type of event you wish to get details for. Events are correlated to Log Activity, and Flows are correlated to Network Activity.

Activity Description
Output
Settings