Running a Task on Multiple Instances of an Integration - Playbook Optimization

Hello,
we are working on a playbook that needs to run a single task on 10 different instances of the same integration. Currently, the only way we know to handle this is by creating a separate sub-playbook for each instance, with the task configured to

xsoar license

I currently have 5 SOAR licenses contracted. However, I have a question: Does the Admin user consume a license? It should be noted that this user has been assigned the administrator role.

Block multiple IP's using panorama

Hi,
I have been looking for a solution to block multiple IP's at the same time using pan-os integration. Is there any way where multiple IP's are given as input to block from firewall.

XSOAR hosting docker container problem (exit status 125)

Hey,

I have a xsoar instance hosted by PA (saas access) and today none of my containers seems to work. Any script run gives the following message

Cortex XSOAR Hosts File

Hello,

Since we use XSOAR 8.6.0 OVA and the SSH user (Viewer) does not have authority to use sudo to alter the hosts file on the OVA, I need to add local domains to the Cortex XSOAR hosts file. Is there another SSH user with the highest privileges

How to stop a playbook task until ALL previous tasks are done?

Hi all,

I'm developing a playbook for Cortex XSOAR that sends a number of queries to our SIEM in parallel and uploads the results as files to an incident. I want to introduce subsequent steps that all depend on the files existing, however I cannot

XSOAR MISP - sync

Hi,
Does anyone have a #Cortex XSOAR sync with a MISP server (bidirectional sync)?

I have two objectives:

1. I have several indicators on my XSOAR, and my goal is to upload these indicators to MISP (including adding the "XSOAR" tag).
2. XSOAR should query MI

XSOAR Engine Integration issue

Hi, 

I installed engine using Shell following instructions on https://docs-cortex.paloaltonetworks.com/r/Cortex-XSOAR/8/Cortex-XSOAR-Administrator-Guide/Install-an-Engine. Then when trying to configure Syslog v2 integration I got multiple errors. F

XSOAR incident in Qradar

Hi Team,

We are encountering a connection timeout issue when attempting to create incidents in Cortex XSOAR using a custom QRadar integration. Based on our observations, we suspect this issue is due to low IOPS on XSOAR, as low as 100, despite the

First time create custom docker image for Cortex XSoar

We are trying to create a docker image for our in-house python dependency project that will be used in our Cortex XSOAR integration.

I saw the doc said we should use demisto/dokerfiles to create the image. I followed the README file in the GitHub r

How add "description" message for Custom Indicators via playground commands

Hello Team,

Am creating the custom indicators via playground command we need to add the "Description" message for particular IOC IP address.

i.e; IOC 158.x.192.10 Description= "Honeypot Malicious IP Address"

I could manually able to add descrip

Community edition

Hello all,

How to obtain the XSOAR community edition for free?

Palo Alto Cortex XSOAR - Community Edition

Hi brothers,it's been two weeks ,I never received the link to download the Cortex XSOAR  #community edition? key or instructions? Please can someone help me with this. any one knows how to get it. (email: support@kingskeyy.com )

Install new package

Hello all.

I need to use a non-existent package (jsonpath_ng.ext) in my automation. What is the correct way to install it and make it available to my automation?