Cortex XSOAR Discussions
Cortex XSOAR enables SOC analysts to manage alerts across all sources, standardize processes with playbooks, take action on threat intel, and automate response for any security use case.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
Cortex XSOAR Discussions
Cortex XSOAR enables SOC analysts to manage alerts across all sources, standardize processes with playbooks, take action on threat intel, and automate response for any security use case.
About Cortex XSOAR Discussions
Cortex XSOAR enables SOC analysts to manage alerts across all sources, standardize processes with playbooks, take action on threat intel, and automate response for any security use case.

Discussions

SplunkPy Integration

Hi everyone,
I get data from splunk with the "search index=notable" query using Splunkpy. I assign the incoming data to the type named Splunk Generic Notable by default. Here, when an incident occurs, there are fields such as event_code, process_name

...

Cortex XSOAR queries

Hi Team,

 

We planned to integrate the IOC push from Cortex XSOAR to other tools, for example, Palo Alto firewalls, other firewalls, SIEM tools, and XDR tools. Is this possible? If so, could you please share any documentation or guidance?

HTML field

Hello everybody,

 

I have a question regarding HTML fields in XSOAR. So I have a Python script to get data from a table but I'm wondering how do I configure an HTML field so that the data my script returns is displayed in an HTML format? I tried conn

...

mof2024 by L0 Member
  • 334 Views
  • 1 replies
  • 0 Likes

Resolved! Can't Append strings into incident.Hostnames

Hi all!,

 

I'm having issues trying to update the incident.Hostnames field.

 

  • What I want to do:

I'm receiving an alert which involve different hostnamed, for the sake of simplicity and to track easier the incidents we want to add the hostnames to th

...

FOtero_0-1706113371425.png
FOtero_1-1706113684985.png
FOtero_2-1706113857656.png
FOtero_3-1706113963629.png
F.Otero by L0 Member
  • 429 Views
  • 2 replies
  • 0 Likes

HA Setup for community version

Hi All,

It seems like I can't find anything about HA setup for the community version.

I wanted to try out to do a HA setup (Active/Passive) in the community version before proceeding to the enterprise version.

 

Appreciate all the help from all.

Resolved! automation scripts

Cortex XSOAR 

Hi community,

Can I get a few sample automation scripts in Python implementing any use cases or achieving any useful task via XSOAR. Any links to such a resource

regish by L0 Member
  • 373 Views
  • 1 replies
  • 0 Likes

Automation in Python using parallel processing

#Cortex XSOAR 

Hi,

Is there a way of creating parallel processing inside an automation in Python ?

My goal is to execute the same function on multiple incidents (pausing and/or starting timers).

 

The thing is, sometimes we have a lot of incidents an

...

sdes by L0 Member
  • 436 Views
  • 2 replies
  • 0 Likes

Xsoar Custome Widget

Hi, I am trying to create a custom widget that calculate follwing (Total Incident+ Total Command Execution) with date paramters adjusted by widget. I tried to implement this with JSON method and Automation Script but unable to get the solution. Can y

...

Cortex XSOAR support for RHEL 8.9 version

Hi All, 

We were reviewing the prerequisites document for Cortex XSOAR installation from the below link

https://docs-cortex.paloaltonetworks.com/r/Cortex-XSOAR/6.11/Cortex-XSOAR-Administrator-Guide/System-Requirements 

We couldn't find whether XSOAR is

...

  • 891 Posts
  • 30 Subscriptions
Top Solution Authors