Cortex XSOAR Discussions

Problem with AppendindicatorFieldWrapper script

Hi!

When we run the appendIndicatorField task, the last IP address of an array never gets tagged. Please see the following examples for clarification:

Example 1: works fine

!appendIndicatorField indicatorsValues="134.122.135.178" field="tags" fie

...

Browserling integration

Dears,
we are trying to integrate with browserling which is not supported by default on XSOAR marketplace.
and to this integration we need to do the following:

1- First, we need to load browserling.js library.
2- Then we create a new Browserling object w

...

Resolved! Using Slack Block Builder renders "submit" button that is unwanted and not found in the JSON Blocks

Hello all,

I am developing a use-case in which a message is sent to a Slack channel containing a Slack block using Slack Block Builder. The message is sent and then received on the Slack Channel but there is a submit button which is appearing even th

...

Resolved! Slack Bot keeps sending messages to users

Occasionally, the bot sends the message in the screenshot below to our users in no particular order. We don't know why that is happening. One time a certain user reported that every time he gets a message from a coworker the bot sends this message to

...

need steps to create MITRE ATT&CK CoA - T1110 - Brute Force playbook in cortex XSOAR

Cortex XDR Crowdstrike Layouts

Hello, I have just onboarded the crowdstrike integration into Cortex XDR. I am looking to modify the incident layout of the incidents themselves and the option is not available. Instead, inside a Crowdstrike Incident I have to usually go to Crowdstri

...

Resolved! The "Disk Current Usage" widget from "Common Widgets" does not show the real value.

Hello,

The "Disk Current Usage" widget from "Common Widgets" does not show the real value. Is there any workaround to create our own widget to show the disk usage?

Getting error 404 issue does not exist in jira-create-issue

I have created a playbook and added a automation as jira-create-issue but every time I am getting error as 404 issue does not exist.

Please help what am I missing..

Resolved! Can run playbook in incident but not job

Currently creating a job to fetch and create an incident through an integration. The job works fine on the test server but doesn't work on production. Forcing the job to run doesn't output an error or even a record of the job attempting to run. But w

...

Position of pasting a task from another playbook

Hello,

When I'm pasting a task from another playbo0k, the task is pasted in a random place inside the playbook, not close to where I'm working.

Is there a way to choose exactly where to paste the task?

Bucket not found

Our deploymentt is multi-tenant deployment. When i run "!Github-get-file-content" command, i get an error some tenants (Bucket not found) but other tenants it work.

What is cause of this error?

Cortex XSOAR

Resolved! Microsoft 365 defender advance hunting query

Hi,

I'm trying to build an advance hunting query in Microsoft 365 defender integration, but still giving me error.

!microsoft-365-defender-advanced-hunting limit=10 query="""AlertInfo | where alertId = fa85caf1c0-b9b9-bc29-f600-08db44a419b9"""

...

Error creating or updating RTIR ticket

I've been trying the #RTIR integration, to create a new ticket indicating a text content, and the execution seems to work but no ticket is created (without indicating text, it works perfectly

Also try to create an empty ticket, and next update with t

...

Registered for community edition, haven't received download link.

Hello,

I registered for the XSOAR community edition a week ago and got a confirmation email. But haven't got anything else after that. Is there anything I need to do or how long should it take to get the instruction and download link?

Thanks.

Resolved! Problem with Slack Notifications

Email notifications are working fine and I want to see the same notification on Slack too. On mentions in the war room, slack should send a notification to users dm. Even though I have notifications enabled for SlackV3 I am not receiving anything on

...

Discussions

Problem with AppendindicatorFieldWrapper script

Browserling integration

Resolved! Using Slack Block Builder renders "submit" button that is unwanted and not found in the JSON Blocks

Resolved! Slack Bot keeps sending messages to users

need steps to create MITRE ATT&CK CoA - T1110 - Brute Force playbook in cortex XSOAR

Cortex XDR Crowdstrike Layouts

Resolved! The "Disk Current Usage" widget from "Common Widgets" does not show the real value.

Getting error 404 issue does not exist in jira-create-issue

Resolved! Can run playbook in incident but not job

Position of pasting a task from another playbook

Bucket not found

Resolved! Microsoft 365 defender advance hunting query

Error creating or updating RTIR ticket

Registered for community edition, haven't received download link.

Resolved! Problem with Slack Notifications

Default Field Mapping in QRadar Content Pack 2.5.7 on XSOAR 6.12

Field Change Script To System Fields

How to Copy Incident Files from Linked Incidents

Can XSOAR disk space vary automatically?

Assign incident to new owner

Getting Vulnerability Findings from Tenable SC for a Specific Host

Re: Using custom machine learning models in XSOAR

playground query question for servicenow

Re: Incident Parent-Child Relationship

Unlock your full community experience!

Resolved! Using Slack Block Builder renders "submit" button that is unwanted and not found in the JSON Blocks

Resolved! Slack Bot keeps sending messages to users

Resolved! The "Disk Current Usage" widget from "Common Widgets" does not show the real value.

Resolved! Can run playbook in incident but not job

Resolved! Microsoft 365 defender advance hunting query

Resolved! Problem with Slack Notifications