Cortex XSOAR Discussions
Cortex XSOAR enables SOC analysts to manage alerts across all sources, standardize processes with playbooks, take action on threat intel, and automate response for any security use case.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Cortex XSOAR Discussions
Cortex XSOAR enables SOC analysts to manage alerts across all sources, standardize processes with playbooks, take action on threat intel, and automate response for any security use case.
About Cortex XSOAR Discussions
Cortex XSOAR enables SOC analysts to manage alerts across all sources, standardize processes with playbooks, take action on threat intel, and automate response for any security use case.

Discussions

Remove apps with Playbook XSOAR XDR

I would like to know about your experience. How do you handle uninstalling software on specific devices that are not allowed and need to be removed via Cortex XDR with Cortex XSOAR  Playbooks without the user see the uninstall.

tlmarques by L4 Transporter
  • 593 Views
  • 1 replies
  • 0 Likes

Resolved! About XSOAR Free Edition Licenses

Dear All,

 

I installed the free version of XSOAR.
However, when I installed XSOAR after the 30-day free license period, the license was not applied properly when I applied the license file.

 

Can I get the free license again by applying again from th

...

Resolved! Field Change Script To System Fields

Hey Community
Did anyone ever attach a field change trigger script to a system field?

I guess it can't be done directly but is there a work around?

 

Also, is there a way to run a script as soon as incident is created

 

Cortex XSOAR 

Securonix

Can someone help me? I have created an instance in the Securonix integration but I want to fetch incidents but I do not get the alerts from my SIEM SECURONIX. It should be noted that the user and everything is correct. But I would like to know if any

...

mgamarra by L0 Member
  • 506 Views
  • 0 replies
  • 0 Likes

Resolved! MS Defender XSOAR Integration daily re-auth.

Hello, used this integration guide (https://xsoar.pan.dev/docs/reference/integrations/microsoft-365-defender) and the integration pulls incidents just fine. Currently using a self-deployed application and device code flow. Problem I am running into i

...

Set Incident values from Integration

Hello all,

 

I have customized a ticketing integration to our image. The last part I'm struggling with is returning values from the integration to incident fields.

My usecase is that, SOC analyst will create a ticket inside our ServiceDesk application

...

  • 1229 Posts
  • 43 Subscriptions
Top Solution Authors
Top Liked Authors