What is the difference between delete incidents permission and incidents table action "delete"? What are the cases where you enable one and disable the other?
Require some suggestions.
I am trying to loop a sub-playbook.
If the exit condition is met, everything is okay. However, if max number of iterations are reached the playbook throws and error that waiting for manual input and fails.
Anyone has any id
...
Hello, I'm working on configuring SSH connections from Cortex XSOAR to our internal Azure-based system. To ensure secure and uninterrupted connectivity, I need to whitelist the IP address used by Cortex XSOAR for these outbound connections in our fir
...
Hello all,
I need to reopen a large amount of incidents on Xsoar. Can anyone suggest how I can do this?
I have tried to run both the built-in command and the automation to reopen from the run command button with the bulk incidents selected but to n
...
Hello,
When Im sending GET request to https://myxsoar/lists.
Im getting list of all XSOAR lists, there is anyway to get Specific list?
I tried:
https://myxsoar/lists/test_list
but it doesn't work.
I didn't find on the documentations anything about th
...
Hi I am new to XSOAR. I am trying to configure sending email to user and capturing their response via email. I used the script named ‘EmailAskUser’ to send email and then I am trying to capture the response using ‘EmailAskUserResponse’. However, it s
...
Hello, I need your help. I need feeds for domain classification and another feed for phishing, to determine whether domains have been compromised or not. What do you recommend for Cortex XSOAR #
Server configurations such as additional headers are required. Is it possible to configure directly in a configuration file through the console?
We are having an error in the ForwardAuditLogsToSplunkHEC: Reason: Failed to execute BaseScript. Error: string indices must be integers.
We have a job sending the logs from XSOAR to Splunk, and suddenly has stopped working. As the script is part of
...
I have a playbook that needs feedback from outside. To set some context, let's say that the playbook generates a UUID a5de4f06-2941-4e26-975e-5e6cb316916d and informs a user that they need to go to https://example.com/a5de4f06-2941-4e26-975e-5e6cb316
...
Hi,
I'd like to install Rad Hat patches on the XSOAR server.
Is it possible, or is there a risk?
Many thanks,
Paz
Hello all,
I have recently come across a use case that requires me to hide incidents from the Tier 1 Team during escalation in order that it can be free to be assigned to a Tier 2 analyst. Is there a way to hide an incident based on an incident fiel
...
We were recently having use case for a SIEM integration with cortex XSOAR. We have an on-premise LogRhythm SIEM server which we need to integrate with our Cortex XSOAR.
I have gone through the official XSOAR documentation for the integration but it
...
I am attempting to create an email from an HTML template but am receiving an error stating "Item not found (8) on list..." followed my the HTML contents of my saved list. I am sure it is looking for the key attribute that is required for the script,
...
Hi community,
Can anyone provide python scripts that automate the most common 3-4 SOC use cases + any non security use case that could be automated
