Cortex XSOAR Discussions
Cortex XSOAR enables SOC analysts to manage alerts across all sources, standardize processes with playbooks, take action on threat intel, and automate response for any security use case.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Cortex XSOAR Discussions
Cortex XSOAR enables SOC analysts to manage alerts across all sources, standardize processes with playbooks, take action on threat intel, and automate response for any security use case.
About Cortex XSOAR Discussions
Cortex XSOAR enables SOC analysts to manage alerts across all sources, standardize processes with playbooks, take action on threat intel, and automate response for any security use case.

Discussions

HA Setup for community version

Hi All,

It seems like I can't find anything about HA setup for the community version.

I wanted to try out to do a HA setup (Active/Passive) in the community version before proceeding to the enterprise version.

 

Appreciate all the help from all.

Resolved! automation scripts

Cortex XSOAR 

Hi community,

Can I get a few sample automation scripts in Python implementing any use cases or achieving any useful task via XSOAR. Any links to such a resource

regish by L0 Member
  • 826 Views
  • 1 replies
  • 0 Likes

Automation in Python using parallel processing

#Cortex XSOAR 

Hi,

Is there a way of creating parallel processing inside an automation in Python ?

My goal is to execute the same function on multiple incidents (pausing and/or starting timers).

 

The thing is, sometimes we have a lot of incidents an

...

sdes by L0 Member
  • 922 Views
  • 2 replies
  • 0 Likes

Cortex XSOAR support for RHEL 8.9 version

Hi All, 

We were reviewing the prerequisites document for Cortex XSOAR installation from the below link

https://docs-cortex.paloaltonetworks.com/r/Cortex-XSOAR/6.11/Cortex-XSOAR-Administrator-Guide/System-Requirements 

We couldn't find whether XSOAR is

...

GetIndicatorsByQuery command

Hi all,

 

Does anyone knows how to retrieve the firstSeen/creation date of an indicator using the GetIndicatorsByQuery command?

 

These are the only fields I know that can be returned so far but none of them is the firstSeen/creationDate of the indic

...

LIEWS05 by L0 Member
  • 586 Views
  • 1 replies
  • 0 Likes

XSOAR + Threat Intelligence

Hi, All!

 

I am working on integrating more threat intelligence into our XSOAR platform. Our latest efforts have been integrating other free sources of IOCs (AlienVault, Abuse.ch, etc...) and then we are going to work that into playbooks to create lo

...

User Restriction and permission

Hi,

using XSOAR I came across some issues related to user permissions and audit logs to have an account of the various activities performed on the platform:

- Is it possible to restrict user permission to execute scripts/commands only via field chang

...

XSOAR - Error in XDR Automation

Hi,

 

When i am trying to execute the automation xdr-get-incident-extra-data (Cortex XDR - IR) in playbook, i am getting an error as shown in the screenshot below. What could be the reason? Kindly help,

 

 

Thanks,

Nithin

nithink_0-1703677129627.png
nithin.k by L1 Bithead
  • 747 Views
  • 3 replies
  • 0 Likes
  • 1007 Posts
  • 31 Subscriptions
Top Solution Authors
Top Liked Authors