Cortex XSOAR Discussions

Close Incidents from Preprocess Rule "Script"

Dears,

Hope you are doing well.

We need to close the Incidents on xsoar from preprocess script, How can we close it using a script in preprocess rule?

I dont need other options like: link and close or drop or close. Because there are some mandato

...

How to know if a zip file is encrypted in XSOAR

Hello,

We'd like to know if a zip file is encrypted inside a playbook or a automation. The way in which XSOAR works with these files does not allow the use of python libraries. Is there a way through the File context value to know if the file is encr

...

Resolved! Include Linked incidents table in email notification

Dear Community members,

hope you are all doing well !

I'm wondering if there is an option to include linked incident table (can be added to the incident layout) in email template.

I'm using Mail sender (New) : https://xsoar.pan.dev/docs/referenc

...

Could use some help with Azure SSO for community edition Cortex XSOAR

Hello,

I have tried many settings and can't seem to quite figure out what text is to be entered into the setup section within Xsoar for the Azure SAML SSO setup. I keep getting this error:

" {"id":"errSAMLLogin","status":400,"title":"Failed to login

...

Resolved! Filter Incidents in specific Time interval

Hi ,

Is there a way to filter incidents in specific time interval ?

For example -

Filter incidents that occurred From 1/5/2023 to 31/5/2023 only between 7:00 to 14:00

Content Update Manger Playbook giving error in Task : Install updates for chosen packs

Error Detail:

ContentPackInstaller - Error occurred while setting up machine. string indices must be integers

Any suggestion, what could be the reason. Tried to pass integer values also but no luck.

Resolved! Running Script or Playbook in one tenant from another tenant.

Hi all,

I have a multi-tenant deployment. I want to run a script or playbook from one tenant to another tenant. How can I do this?

#XSOAR

How to Find and update existing incidents through Integration

Hi,

We are providing partner integration for our product and this is the requirement.

My product # generates/creates 'Cases' which are pulled inCortex XSOAR as incidents using fetchIncidents call. It might be possible that sometimes a 'Case' in ou

...

Resolved! Script-based Widget

I want to design a widget. This widget will appear on the dashboard. But I want this widget to work only once a day. How can I do this?

Cortex XSOAR

Trigger a usecase by sending an email to an email address (Dedicated) owned by Paloalto

I would like to explore an option to trigger a use case by forwarding or sending the email to a cortex email address (Dedicated) to a client and trigger a playbook from there.

(Something like client@paloalto.com) and then it creates an incident and

...

Resolved! ERROR ModuleNotFound on XSOAR

Hi,

While trying to run the PANORAM integration we are facing this issue:

Script failed to run: Error: Error [[Traceback (most recent call last): File "<string>", line 12, in <module> ModuleNotFoundError: No module named 'panos' ]] - Stderr [] (2

...

Getting Started

Greetings--

I'm a data analyst who is adept at using tools like Tableau, R, MS Access, MySQL, and PowerBI to analyze both large and small datasets to find patterns, tell stories, visualize data, etc. A cousin who first got me on the path for administ

...

Function to get the date when "Common Scripts" were updated

Hello,

We'd like to to get the date when "Common Scripts" were updated. Is there any function to get it?

XSOAR platform video technical walkthrough video

Hi Team,

Looking for a technical walk-through video of the XSOAR platform, not marketing videos.

Can anyone help me by sharing the video link here?

Resolved! Task to check the size of a playbook

Hello,

I'd like to add a conditional inside a playbook to delete the context in case incident size is bigger than a value. What function could I use to check the size of an incident?

Cortex XSOAR Discussions

Discussions

Close Incidents from Preprocess Rule "Script"

How to know if a zip file is encrypted in XSOAR

Resolved! Include Linked incidents table in email notification

Could use some help with Azure SSO for community edition Cortex XSOAR

Resolved! Filter Incidents in specific Time interval

Content Update Manger Playbook giving error in Task : Install updates for chosen packs

Resolved! Running Script or Playbook in one tenant from another tenant.

How to Find and update existing incidents through Integration

Resolved! Script-based Widget

Trigger a usecase by sending an email to an email address (Dedicated) owned by Paloalto

Resolved! ERROR ModuleNotFound on XSOAR

Getting Started

Function to get the date when "Common Scripts" were updated

XSOAR platform video technical walkthrough video

Resolved! Task to check the size of a playbook

Azure Active Directory users - Incorrect padding

XSOAR 8 + Export Data to On-premise for Retention Compliance

How to include the initial Email as attachment OR how to reply on the same Email sent

Missing button scripts from content packs

Extrahop Reveal X Integration - Stop fetching of Hidden Detections possible?

Fetching CrowdStrike Next-Gen SIEM Alerts into SOAR

Re: How to include the initial Email as attachment OR how to reply on the same Email sent

Automating SLA in XSOAR with Reminders and Reset on Updates

Re: How to include the initial Email as attachment OR how to reply on the same Email sent

Unlock your full community experience!

Cortex XSOAR Discussions

Resolved! Include Linked incidents table in email notification

Resolved! Filter Incidents in specific Time interval

Resolved! Running Script or Playbook in one tenant from another tenant.

Resolved! Script-based Widget

Resolved! ERROR ModuleNotFound on XSOAR

Resolved! Task to check the size of a playbook