Hello All, I have a question, i have integrate qradar into xsoar, but why only 2 fetched data shown in the classification & mapping? Is there any configuration should i modify ? Thank You
Hello All, I have been working on the XSOAR Platform for a long time and there is something which I haven't been able to find a solution for. I would like to rerun a playbook for multiple incidents and I use the !setPlaybook to do this. I do this after rectifying the issue on the playbook for example task error or similar. The problem is that m...
Is there a way to select alternate layouts in a case based on an if-statement?
Hi!I'm installing XSOAR multi tenant environment. Currently its a Community edition for POC.Installed main host and tenant host as per documentation. Both Ubuntu 22.04I am unable to connect tenant host to main host.Settings - account management - new account - host/HA group only shows main host:hostname:443They are both in same subnet, main host...
Why does the browser window in XSOAR remain open when an incident has been closed? Is there a way to automatically go back to all incidents? e.g. to https://xsoar.dev/#/incidents
- Hi, While doing the customized Remedy integration test, getting-"Did not get the expected value from test (85)" but able to fetch the incident status via "remedy-incident-get incidentID", OAuth test successful via "remedy-auth-test" in playground through queries and also generating the Incidents. Could anyone assist me with this?
I was wondering how we can add splunk results into Incident layout. Possibly a CSV file or markdown. We use splunk to search our email logs to see other recipients who got phishing email. Wanted to display that in the Incident layout. Any advise is highly appreciated. Thank you.
Hi, I am using a splunk search automation and passing a query in input and I am getting appropriate result without any null value. So I have added a new task after that to convert the output in csv, I am using Exporttocsv automation, but here the input value is consisting of null followed by the result of splunk search because of which I am ge...
Hi , Is there a way to make the the system pull incidents more often , now it takes about 3 min since the offense first appears in the Qradar until it appears in the Demisto.
Hi, everyone: I'm trying to use one of our tenants for Threat Intelligence and we want to share all the indicators obtained to the other tenants. Is there any way?
Hi community, is there a way to establish a cost for a task or a playbook to improve this DBOT widget?
Hello all, I am working with XSOAR 8 Hosted and configuring a Dev/Prod environment. I have two critical questions regarding this. Can the dev environment be used to test noisy integrations that produce many alerts in a controlled way without impacting the prod environment ? Secondly, the main intention for us with the dev/prod configuration is...
Hi all, I'm looking for urlscan.io alternatives that are available in the marketplace. Ideally, something that'll allow "browsing" from a different location, like GeoPeeker. Thanks!
Our environment cannot connect to the internet. We have installed XSOAR 6.11 offline before, and now we want to upgrade to version 6.12. So I would like to ask, can I upgrade offline? I have read the official documentation of XSOAR and there is no mention of offline upgrade method.
Hi does anyone has xsoar image file?
| User | Likes Count |
|---|---|
| 1 | |
| 1 | |
| 1 | |
| 1 | |
| 1 |
