Cortex XSOAR Discussions

How to Find and update existing incidents through Integration

Hi,

We are providing partner integration for our product and this is the requirement.

My product # generates/creates 'Cases' which are pulled inCortex XSOAR as incidents using fetchIncidents call. It might be possible that sometimes a 'Case' in ou

...

Resolved! Script-based Widget

I want to design a widget. This widget will appear on the dashboard. But I want this widget to work only once a day. How can I do this?

Cortex XSOAR

Trigger a usecase by sending an email to an email address (Dedicated) owned by Paloalto

I would like to explore an option to trigger a use case by forwarding or sending the email to a cortex email address (Dedicated) to a client and trigger a playbook from there.

(Something like client@paloalto.com) and then it creates an incident and

...

Resolved! ERROR ModuleNotFound on XSOAR

Hi,

While trying to run the PANORAM integration we are facing this issue:

Script failed to run: Error: Error [[Traceback (most recent call last): File "<string>", line 12, in <module> ModuleNotFoundError: No module named 'panos' ]] - Stderr [] (2

...

I'm a data analyst who is adept at using tools like Tableau, R, MS Access, MySQL, and PowerBI to analyze both large and small datasets to find patterns, tell stories, visualize data, etc. A cousin who first got me on the path for administ

...

Function to get the date when "Common Scripts" were updated

Hello,

We'd like to to get the date when "Common Scripts" were updated. Is there any function to get it?

XSOAR platform video technical walkthrough video

Hi Team,

Looking for a technical walk-through video of the XSOAR platform, not marketing videos.

Can anyone help me by sharing the video link here?

Resolved! Task to check the size of a playbook

Hello,

I'd like to add a conditional inside a playbook to delete the context in case incident size is bigger than a value. What function could I use to check the size of an incident?

Getting output from splunk query as an attachment

Hi All,

I am running a splunk search query and I want the query's output in the form of an attachment to be used as input for the next task. How should I do that?
Please assist..

Thanks

Himangi

Problem with AppendindicatorFieldWrapper script

Hi!

When we run the appendIndicatorField task, the last IP address of an array never gets tagged. Please see the following examples for clarification:

Example 1: works fine

!appendIndicatorField indicatorsValues="134.122.135.178" field="tags" fie

...

Browserling integration

Dears,
we are trying to integrate with browserling which is not supported by default on XSOAR marketplace.
and to this integration we need to do the following:

1- First, we need to load browserling.js library.
2- Then we create a new Browserling object w

...

Resolved! Using Slack Block Builder renders "submit" button that is unwanted and not found in the JSON Blocks

Hello all,

I am developing a use-case in which a message is sent to a Slack channel containing a Slack block using Slack Block Builder. The message is sent and then received on the Slack Channel but there is a submit button which is appearing even th

...

Resolved! Slack Bot keeps sending messages to users

Occasionally, the bot sends the message in the screenshot below to our users in no particular order. We don't know why that is happening. One time a certain user reported that every time he gets a message from a coworker the bot sends this message to

...

need steps to create MITRE ATT&CK CoA - T1110 - Brute Force playbook in cortex XSOAR

Cortex XDR Crowdstrike Layouts

Hello, I have just onboarded the crowdstrike integration into Cortex XDR. I am looking to modify the incident layout of the incidents themselves and the option is not available. Instead, inside a Crowdstrike Incident I have to usually go to Crowdstri

...

Discussions

How to Find and update existing incidents through Integration

Resolved! Script-based Widget

Trigger a usecase by sending an email to an email address (Dedicated) owned by Paloalto

Resolved! ERROR ModuleNotFound on XSOAR

Getting Started

Function to get the date when "Common Scripts" were updated

XSOAR platform video technical walkthrough video

Resolved! Task to check the size of a playbook

Getting output from splunk query as an attachment

Problem with AppendindicatorFieldWrapper script

Browserling integration

Resolved! Using Slack Block Builder renders "submit" button that is unwanted and not found in the JSON Blocks

Resolved! Slack Bot keeps sending messages to users

need steps to create MITRE ATT&CK CoA - T1110 - Brute Force playbook in cortex XSOAR

Cortex XDR Crowdstrike Layouts

Field Change Script To System Fields

How to Copy Incident Files from Linked Incidents

Can XSOAR disk space vary automatically?

Assign incident to new owner

unable to push the content from dev to prod

XSOAR Feature Request

ServiceNow Developer looking for ideas

Unlock your full community experience!

Resolved! Script-based Widget

Resolved! ERROR ModuleNotFound on XSOAR

Resolved! Task to check the size of a playbook

Resolved! Using Slack Block Builder renders "submit" button that is unwanted and not found in the JSON Blocks

Resolved! Slack Bot keeps sending messages to users