Active Directory Query - Wrong info when null provided

I still consider myself fairly new to XSOAR and haven't written a lot of playbooks so maybe I'm doing this wrong, but here's my issue.
When using the Active Directory Query pack's commands (the ad-get-user most recently but I believe ad-disable-accoun

Help regarding accessing trail version for learning

Hi All,
Anyone please help me how to use trail version where I can learn and practice cortex xsoar.

Thanks in advance.

xsoar Custom script widget

Hi all,

im new to xsoar dashboarding

 can anyone guide me how to create a widget to get playbook execution count with playbook name and playbook tag

Deduping in Playbooks

I'm confused as to how to use the DedupBy command/script in my Playbook. I have a set command that grabs all the UPNs from a list of alerts in the data. This results in the Context data of:
Defender:{
UPNs:[
0:"user1@domain.com"
1:"user2@domain.com"
2:"us

O365 Teams (Using Graph API) (Community Contribution) configuration With XSOAR

Has anybody used the O365 Teams (Using Graph API) (Community Contribution) integration to send chat messages and was able to configure the integration successfully? 

while trying to test integration after configuring it, it is showing the following

XSOAR Dev to Prod - Builtin content repository

Hi, I'm looking into how we can use the built-in content repository to push content from the development to the production tenant. In this scenario, Palo Alto will handle the content repository. If I want to manage branching, is it possible to do so

Integration issue Mail Listener v2 with O365

Dear All,

I would like to seek support if anyone encounter issue Cortex XSOAR "Mail-Listener-v2" with O365? I have do allow permission and try with different IMAP and Port, but the issue still persist. 

Appreciate, for any advice to resolve this m

[Proposing Solution] Failure to extract zip file downloaded from ThreatGrid integration command

Cisco Secure Malware Analytics (Threat Grid) v2 is an OOTB integration comes as part of Cisco Secure Malware Analytics content pack to connect with ThreatGrid(TG) platform and achieve various functionalities.

Issue background: !threat-grid-sample-lis

XSOAR SLA Script

Hi everyone,

I have a question regarding SLA tagged scripts on XSOAR. 

I have a field-change-triggerred script that starts an SLA timer within automation if the field is changed to certain values. This part is okay and we observe that the sla timer

Is there Any STIX format for external threat feeds via TAXII Protocol

Hi Palo Alto Community,

Is there any documentation or configuration for Palo Alto NGFW that can be integrate with some external threat intelligence feed (via TAXII) to block any IoCs list? I need documentation for direct device, but if you have doc

XSOAR - Scaling for pop-up windows and drop-down menus

Currently there are several areas of the Cortex XSOAR platform experience where pop-up windows and drop down menus appear in a static size regardless of available screen real estate.  Automatic scaling to the existing window size would be fantastic! 

SplunkPy w/ES 8 Capability

Those of you that work with a Splunk environment with Enterprise Security, what has been your experience? 

We were fine until we upgraded to ES 8.x...

SplunkPy Integration

Hi everyone,
I get data from splunk with the "search index=notable" query using Splunkpy. I assign the incoming data to the type named Splunk Generic Notable by default. Here, when an incident occurs, there are fields such as event_code, process_name

Splunk integration - Mirroring not working

I have a problem with the incoming mirroring, the comments have not been synced back to XSOAR when using Splunk ES8.

As a result I upgraded the splunk content pack to 3.3, but now the entire mirroring is broken. No updates are synced back to XSOAR (V