This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
Cortex XSOAR Discussions
Cortex XSOAR enables SOC analysts to manage alerts across all sources, standardize processes with playbooks, take action on threat intel, and automate response for any security use case.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Cortex XSOAR Discussions
Cortex XSOAR enables SOC analysts to manage alerts across all sources, standardize processes with playbooks, take action on threat intel, and automate response for any security use case.
About Cortex XSOAR Discussions
Cortex XSOAR enables SOC analysts to manage alerts across all sources, standardize processes with playbooks, take action on threat intel, and automate response for any security use case.

Discussions

Start a conversation

Resolved! Dev Content Repository update issues

Hello, I'm working in a XSOAR Dev to Prod environment. The connection from Dev to it's repository branch was broken a while back. When updating the password I'm getting the following message asking me to discard all of my local Dev changes. I tried connecting the dev side of XSOAR to it's existing branch, and also a new branch. Same ...

joshuajohnsonco_0-1696876657024.png

Unable to integrate Netwitness v12.2 with XSOAR Community

Hi Community, I tried integrating XSOAR with NW v12.2, but getting below error: 1. used this api link also, but no luck: https://192.168.11.131/rest/api/incidents 2. created new user "soar" with integration-server.api.access 3. both SOAR and SIEM can ping each other. local firewall and iptables are off. No idea, what I'm missing. Any sugg...

ricky1890_0-1697385650528.png

Resolved! XSOAR Pre-requisites

Hi, I am trying to deploy Cortex XSOAR in Centos 7.9 version. In the XSOAR help document there is a pre-requisite for the kernel versions of Linux, as shown in the screenshot below, But when i checked the Kernel version of Centos 7.9 it is 3.10.0-1160. Centos 7.x series doesn't have the mentioned kernel versions. What to do? Kindly suggest.

nithink_0-1695204114140.png
nithin.k by L1 Bithead
  • 2871 Views
  • 3 replies
  • 0 Likes

Related to Cortex XSOAR Playbook

Hello,We have integrated QRadar with Cortex XSOAR. I am creating playbook that should be sending email to the Client for triggered alert. Now, I wanted to events fields, Virus total reputation that shows in analysis in the email body. Questions are,How to add event's fields in the email body via variables?How to add reputation from integrated TI...

Text Widget update issue

Hello everyone, I have issue with text widget which is getting the value from automation. The automation have two mandatory fields that are going to get input when playbook executed. Automation sets the list data by getting user input which is we want to display in the text widget. Even though the list data updated, text widget is not updati...

Screenshot 2023-08-18 175634.png

manage Null values

Hello, I'm trying to create a dataframe from two lists from the context: key1: 0:value1 1:null 2:value3 key2: 0:value1 1:value2 2:value3 When I call them using demisto.getContext(...), the null value is not passed, like if the key doesn't exist. So my first list becomes, without a row: key1: 0:value1 1...

Josep by L4 Transporter
  • 6796 Views
  • 13 replies
  • 0 Likes

Help required to install cortex Xsoar community edition on AWS

Help required to install cortex Xsoar community edition on AWS,Please be informed that I have file in my PC and need to pull that in to EC2 instance. I will not be able to install it with the url as I have reached maximum number of attempts and system is throwing below error "HTTP request sent, awaiting response... 400 Bad Request2023-10-10 14...

KV279 by L0 Member
  • 1118 Views
  • 1 replies
  • 0 Likes

Free space in XSOAR

Hello, We're feeding XSOAR with a lot of incidents. To avoid this, we created a job which deletes incidents each week. However, due to the amount of them, the command "SearchIncidentsV2" fails, it's no capable to search them. How can we free space by deleting incidents in a massive way?

Josep by L4 Transporter
  • 2152 Views
  • 3 replies
  • 0 Likes

Problem retrieving fields from XDR

Hello community, I am having a problem retrieving fields in XSOAR from XDR. I get most of the fields, but there are some that do not reach XSOAR, such as, for example, the "action_evtlog_data_fields" (it is not that they do not appear in the context, it is simply that the incident in XSOAR does not have those fields, as shown in the picture)....

rafaelusano_0-1695313186329.png
rafaelusano_1-1695313371429.png

Resolved! Disable auto assign incidents

Currently, XSOAR is randomly assigning incidents to users. This includes user accounts who will never work incidents. As I understand this is the default built-in process. I looked at the AssignAnalystToIncident script, but really don't know what needs to be updated here. I would like to completely disable the auto assigning of incidents. I...

Send Automated Alert from Cortex Xsoar

HI All, I have created a playbook in Cortex Xsoar to sent automate email when a particular incident came. The issue is when i am getting email it was in the below format:- Hello Team, We have observed an alert , kindly find the alert details below - Event Name - Source IP in Event - Raw Data - Recommendations: Kindly check the business rel...

Krati199 by L0 Member
  • 1161 Views
  • 1 replies
  • 0 Likes

QR code read from an image locally

Hi! I would like to be able to read QR codes locally. The marketplace offering does not suggest a local QR read option. What would it take to develop one, as I can generally see that Python related libraries do exist? Could I request a QR related docker image to be created (currently i do not seem to find one)? Thanks, Antanas

Antanas by L2 Linker
  • 2186 Views
  • 3 replies
  • 0 Likes
  • 1298 Posts
  • 45 Subscriptions
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks