From the Welcome mail I receive Palo Alto network Support expected is Hub right?
Hi all,
I'm trying out SlackAskV2 and my message is being sent to the channel successfully. I used 'Yes' and 'No' as options.
When I click the 'Yes' or 'No' buttons from the slack channel, nothing is returned to the War Room.
Now, where do I find the
...
I'd appreicate guidance on how to update IOC fields with information extracted from an excuted playbook task.
My use case centers around updating File Hash IOCs to include file signature metadata information to enable easier cleaning up of IOCs as
...
Hi Everyone
I have multiple simple playbooks tasks taking over a mins to complete, such as closing ticket, condition select etc,
We checked the CPU and Memory usage it seems normal,
Any suggestion where I can change why ti taking so long?
Ch
...
in a multi tenant environment, should I forward all the system configurations to tenants or are some of them meant only for hosts?
CSP cases in particular, can be pretty confusing. CSP tells me to put a sys config on the main account and in another c
Hello!
I have a question. How can I make it so that I would like to rasterize email/url. The image that appears in the war room (which is the result of running the command) i would like to display on one layout field.
I guess I should use dynamic secti
I want to achieve below steps. is there any exiting playbook or have to customized playbook?
In this first step, we will fetch the list of existing IOCs from Microsoft APT and compare them with the IOCs
...
Hello!
During incident investigations, it would be useful if certain Context Data fields (if they have a value) are written to the incident layout and you don't have to search for the value in the Context.
My question would be, how can I make it so t
...
I need to create some report and I am using pandas module for that but unable to read the file from my local rdp desktop. Note: I am using xsoar from web Interface. I try to use with "\\" to avoid escape sequence mistake. It is unable to read the fil
...
Hi,
First of all, we are using a lot of automations searching for incidents using queries often with more than 100 results.
The scripts line looks like this:
res = demisto.executeCommand('SearchIncidentsV2', {'query': query, 'limit': 5000})[0].get(
...
In the "cybereason-get-sensor-id" task we manage to retrieve the sensor id for a given machine, but only in the result tab.
In fact, it looks like the integration doesn't return an output result, so we're not able to use the sensorId as an input fu
...
Hi, I want to use Exabeam integration in XSOAR but not to fetch incidents (incident responder) as it is currently set in fetch-incidents command, that is in fetch_incidents function.
The plan would be to fetch with get-notable-users command, which pr
Hello,
I am just wondering if we are losing XSOAR Support after installing several custom Docker images which are not in the following list, on our XSOAR* Environment :
==> https://hub.docker.com/r/demisto
* : OnPremise - BarMetal XSOAR
Thanks i
...
Hello all,
Fresh install of XSOAR onto Ubuntu, all went well. I a trying to run the HelloWorld integration but I keep getting the error:
Failed to execute test-module command. Error: Verify that the server URL parameter is correct and that you ha
...
Hello,
Is there a way to store custom Data elsewhere than in incidents ? I suceeded in "Lists" but it appears than maximum list size is 209715 characters ==> https://docs-cortex.paloaltonetworks.com/r/Cortex-XSOAR/6.9/Cortex-XSOAR-Administrator-Gui
...
