Cortex XSOAR Discussions

Single Incident/Playbook is killing the whole platform

Hi,

I built a playbook to pull some nested data (~8 MB in total) which then is used in a looped subplaybook for additional data extraction.The subplaybook is relatively simple, uses for each input loop, starts with deletecontext (all=yes) and retur

Unique Files From File Object

Dear All,

I am currently optimizing the phishing playbook and have encountered some issues with the detonation and enrichment processes that handle file objects. I noticed that duplicate files are being passed to the sub-playbooks. I attempted to use

Cortex XSOAR - Community Edition Support

Post here for all of your Community Edition support questions and one of our product experts will get back to you soon! 

Help with Cortex XSOAR API

Hi everyone,

I'm currently working with XSOAR API, and I'd like to get some help in this way.

I gotta gather all the data from a specific dashboard. I know that there is one API endpoint that I can use for it but, the documentation does not expla

JavaScript vs Python scripts

Hi everyone,

Lately, I was wondering about Python and JavaScript performance in terms of computational speed and XSOAR resource use. I'd like to work as efficient as possible and that's the reason I'd like to ask for the XSOAR community thoughts.

Error with input field, before entering subplaybook, no running tasks in subplaybook, but QRadar query will called and performed.

Error with input field, before entering subplaybook, no running tasks in subplaybook, but QRadar query will called and performed.

Please assist urgently.

Cortex XSOAR DNS resolving issue

Hi all, 

I am trying to integrate Cortex XDR with Cortex XSOAR. I have configured api key and other settings . But sometimes this integration works, sometimes do not,  because of DNS resolving issue. 

I dont think it is our DNS servers problem, becaus

MT out of sync issue

Hi Team,

One of my customer accounts in multi-tenant setup appear to be out-of-sync despite successfully syncing. I have synced accounts from the Main Account UI using both the 'Sync all accounts' and 'Sync' individually selected accounts . The cont

XSOAR removes roles from a user - Licensing issues?

Hi team,

I currently have 6 users configured in XSOAR (including the admin user). However, we only have 5 licenses contracted.

The "admin" user has the admin role.
The remaining users are assigned the analyst role.

Incident:

I have noticed that, from t

Questions regarding the operation of Cortex Xsoar

Hi Team,

I have some questions regarding the operation of Cortex Xsoar and need assistance

1. I bought a license for 5 users. Does that mean you can only create 5 users or only 5 users can be active at the same time? 

2. How to classify incident i