Proofpoint Threat Response XSOAR integration Block URL, Block Domain, Block IP lists?

Hello, we successfully have integrated Proofpoint Threat Response Logs into our XSOAR instance. One of the problems we noticed right away is that it seems like its only a one way API flow, as in we cannot send any commands from XSOAR back to Proofpoi

XSOAR content pack update error

Hi community,

I'm running a XSOAR CE Edition (Version 6.11.0 Build 300044), which is weirdly not able to download content pack updates.

I receive the following error message:

QRadar API 19.0 and Incoming Mapper problem

Dear all,

I am trying to deploy MT XSOAR on a customer and they are using QRadar 7.3.5 with API 19.0. I have noticed that some incidents do not get the same mapping, yet they use Qradar Generic Incoming Mapper and all incidents are set as QRadar ge

timeout or authorization Issue with Mail Sender (New)

Hi,

When testing send mail new integration on load balancing group in XSOAR getting "timeout while waiting for engine to answer. Wait time:1m0s. Note that command is supported from engine version 6.0 and above But we are running on 6.10 version".
for

Not getting output in Jira

Hi All,

I have added a custom field in jira (MITRE Tactic). I have mapped this field in XSOAR with 2 fields: Mitre Tech ID(short text type) and MITRE Technique ID(Multi select / Array).

Below is the command I was using and the output I was getting:

"

Email data collection survey form independent of xsoar link

Hi community,

I want to create a task which sends the required query and options(single select, input box ) directly to stakeholders where they can update the data in the email itself and submit it without  going to the xsoar web survey page.

Tha

When editing and incident field to update/delete some values the "old" values appears back again.

Evertyime I run the playbook the old values appear again in the "Incident field" setting.

I tried to :

- Edit the field with the new values and save it.
- Completely delete the field and create is again.
- Deleted "field associated with the question"

Live Backup encountered the following error on this host: [master] Failed live back on remote server [401]. DR authorization header does not equal con

Hi,

we've been having issues with Live Backup:

Live Backup encountered the following error on this host: [master] Failed live back on remote server [401], [{"id":"unauthorized","status":401,"title":"Unauthorized","detail":"The request requires auth

Symantec similar command for FireEye HX v2 commands

Hi,

Can anyone help for this-

Which FireEye HX v2 automation command will give the equal output for below-mentioned Symantec command:

1. sep-endpoint-info( to Get Computer Info using IP & using Hostname)
2. sep-scan-endpoint(for Full Scan on Endpo

Is there a way to check on which drive the demisto application is installed on

Is there a way to check on which drive the demisto application is installed on