Cortex XSOAR Discussions

Cortex XSOAR enables SOC analysts to manage alerts across all sources, standardize processes with playbooks, take action on threat intel, and automate response for any security use case.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Cortex XSOAR Discussions
Cortex XSOAR enables SOC analysts to manage alerts across all sources, standardize processes with playbooks, take action on threat intel, and automate response for any security use case.
About Cortex XSOAR Discussions
Cortex XSOAR enables SOC analysts to manage alerts across all sources, standardize processes with playbooks, take action on threat intel, and automate response for any security use case.

Discussions

XSOAR EWS 2022 Integration

As you know, the current EWS integration is limited to Exchange 2019. Could you please confirm if there are any plans to extend support for Exchange 2022? Additionally, are there any recommended workaround solutions for implementing inbox monitoring

...

[Cortex XSOAR] Integration TIM to SIEM Elastic

Hello Team,

 

I have a case that must integrate indicator from TIM Cortex XSOAR to SIEM 3rd Party like Elastic. Is there any documentation about how to integrate indicator from TIM for Elastic? Because when I search in documentation from Cortex XSOAR

...

A.Faruq by L0 Member
  • 104 Views
  • 0 replies
  • 0 Likes

WHOIS Integration - Connection Refused Errors

Hi All,

I am using hois integration to use "domain" command. I sometimes have array of strings for domains and sometimes single string and in most of cases whois return results to me but i got sometimes "Connection Refused" Issue. I already adjusted

...

Syedhkt by L2 Linker
  • 149 Views
  • 0 replies
  • 0 Likes

Update XSOAR Incident via API - version issues

I am trying to update XSOAR Incidents via API, but am having issues with the Optimistic lock and incident versions etc.

I can create incidents via API call and can also get the information from incidents via API. 

When I create a new incident in our

...

kbratt by L1 Bithead
  • 147 Views
  • 0 replies
  • 0 Likes

Retrieve screenshots from Notes section

Hi!

 

We are trying to give more importance to XSOAR within our SOC processes. As part of the changes we are introducing, we want all alert documentation to be done from now on in the 'Notes' section of each XSOAR incident.

 

The issue we are facing

...

adocasar by L1 Bithead
  • 187 Views
  • 1 replies
  • 0 Likes

Export Playbook and Import

Hi,

Iam trying to figure out how to perform the following:

Export a playbook, overwrite some of its tasks (send-mail Exchange) and upload the playbook back to XSOAR.

I found in Docu an API for playbook import as yaml but no export API.

 

If Anyone co

...

  • 1246 Posts
  • 43 Subscriptions
Top Solution Authors
Top Liked Authors