Hi,
we have an integration with different instances, and we want to execute a builtin playbook, inside another playbook, but we need to indicate which instance we want to use.
The playbook does not have an "Advanced->Using" Field. Is there any way to
...
Community, have you noticed that we may be accidentally exposing confidential information of the users we protect by submitting URLs for analysis to URLscan.io?
Credits to: FABIAN BRAUNLEIN
Hi, I am planning to deploy 1 main machine and 4 host machines. I'll keep all the tenants in the host machines so the main machine won't have any tenants (I read somewhere that this is the recommended deployment). I want to save resources if possible
...
Hi,
one question about O365 integration. Maybe it's a O365 question, not a XSOAR one, but I'd like to know if I can do it with XSOAR.
I have an alert "Email reported by user as malware or phish" from Microsoft Graph Identity and Access integration.
...
Hello,
Timeout configuration does not function in "ScheduleCommand" task using an automation. The timeout is set inside the task in Advanced Tab->"Execution timeout(seconds)" and inside the automation in Settings->Advanced->Timeout(seconds), but is n
...
Hello,
I'm trying to uninstall the deprecated integration in XSOAR. However, when I search for them in the Marketplace, they don't appear. Any clue?
From all the incidents I have, I want to filter out the incidents having email communications associated with them.
There are several fields in the context and in the incident of the context that identifies an incident as email communications associat
Hello,
I need some help to understand how ML models work in XSOAR. In the documentation, I can only see models related to emails.
I'd like to create a model just with the close reason, False Positive or True Positive. I already trained the model, how
...
I've a couple of questions regarding mirroring in Cortex XSOAR which are listed below.
1. Is it possible to change the status of the XSOAR incident from Pending to Active in the get-remote-data command? I have checked couple of mirroring integration
...
I urgently need to download Cortex XSOAR 6.6 version. Can anybody share the link or steps to download Cortex XSOAR 6.6.0 (B3124193). I really appreciate any help you can provide.
Guys,
I Have Phishing Playbook consists of two big parts:
a- L1 Phishing playbook.
b- L2 Phishing playbook.
The flow starts from L1 doing the needed automation and tasks like (Extracting IOCs, Headers, Doing Enrichment, making Splunk searches, .
...
Dears,
I am facing an issue in one of the tenants as below once I am trying to press anything and as I check the directory I found that demisto is the owner and the permissions are drwxr. Appreciate any Support.
"Write /var/lib/demisto/tenents/(t
...
Hello team, I've use-case where I need to fetch related events for a particular incident periodically.
For that, I've prepared a playbook which will pull the events related to each XSOAR incident and link that data in Contex of a particular XSOAR inc
...
Hi,
What's the drawback of enabling 'trust any certificate' in integration?
Thanks
