Cortex XSOAR Discussions
Cortex XSOAR enables SOC analysts to manage alerts across all sources, standardize processes with playbooks, take action on threat intel, and automate response for any security use case.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Cortex XSOAR Discussions
Cortex XSOAR enables SOC analysts to manage alerts across all sources, standardize processes with playbooks, take action on threat intel, and automate response for any security use case.
About Cortex XSOAR Discussions
Cortex XSOAR enables SOC analysts to manage alerts across all sources, standardize processes with playbooks, take action on threat intel, and automate response for any security use case.

Discussions

Resolved! MS Defender XSOAR Integration daily re-auth.

Hello, used this integration guide (https://xsoar.pan.dev/docs/reference/integrations/microsoft-365-defender) and the integration pulls incidents just fine. Currently using a self-deployed application and device code flow. Problem I am running into i

...

Set Incident values from Integration

Hello all,

 

I have customized a ticketing integration to our image. The last part I'm struggling with is returning values from the integration to incident fields.

My usecase is that, SOC analyst will create a ticket inside our ServiceDesk application

...

XSOAR keeps firing the same incident

Hi All,

 

My XSOAR instance is a cloud hosted environment running on the latest version 8 build.

 

I have a playbook that sends a notification email to a user in response to a change in their account settings to confirm if recognized. The user is req

...

PWJ2020 by L0 Member
  • 980 Views
  • 2 replies
  • 0 Likes

Resolved! unable to push the content from dev to prod

Hi All,
I am attempting to push content from dev XSOAR to prod XSOAR, but I’m encountering a strange and frustrating error that lacks detailed information.

 

I got following error when pushing content on dev "Failed committing changes. Error: Unexpec

...

Resolved! JSON Sample Incident Generator

I am trying to create "sample" alert/incidents in our XSIAM TEST environment for playbook testing based old previously worked alerts.  Using the !ExportAlertContextToJSONFile command within an alert successfully creates a JSON file.  After copying th

...

DBruce by L0 Member
  • 1509 Views
  • 1 replies
  • 0 Likes

Incident Parent-Child Relationship

I'm looking to establish a hierarchical relationship for linking incidents in XSOAR, specifically a parent-child structure. Currently, the platform allows for linking incidents without hierarchy and creating child incidents under a parent ticket. How

...

XSOAR Reports and Count Problems

Hi,

 

We create two different queries by changing the date range in the reports. These two queries show a different number of incidents for the same day (Jun 24).

We tried various queries in the query field. The result did not change both with and wi

...

  • 1247 Posts
  • 43 Subscriptions
Top Solution Authors
Top Liked Authors