I have an ArcSight ESM and in my scenario I want to make integration between ESM and TheHive a third-party tools as an Incident Response.
As I know in the ESM Console, there is a resource for developing an execution command using in alert action after trigger a correlation rule. I must to set a script in Python language for using in this resource.
Is there anyone know or have an experiences in this issue and integration?
I thinks this url -> TheHive4PY is a clue!