Has anyone written a playbook that would check the age of a domain, say via it's Whois creation date, and then do a task?*
*Originally contributed to dfircommunity.slack.com #playbooks channel by SteveC on Friday, May 15th, 2020 at 3:11 pm
Hello all,
We're trying to edit the layout of an incident in the Main Account tennant in order to display output of splunk searches.
When adding the "War Room" section in the layout we're asked to select a war room filter from existing list (see belo
...
We have Palo Alto Global Protect set up and it works very well with various web applications, however it does not work with the Demisto/XSOAR web interface. It just shows a blank page, although all connectivity is allowed and I see packets flowing.
T
...
Hello guys,
When analyzing a phishing case, I would like to block a sender for all the company. I've read in the Microsoft doc and they say you can do it by creating a blacklist. I've not been able to find it in XSOAR.
Is there a way of doing that?
K
...
Hi,
I filled out the form for the community edition at https://start.paloaltonetworks.com/sign-up-for-community-edition.html. I have received a confirmation email and an email for more information I have replied.
unfortunately I get no response to use
...
Hi,
Could anyone help me in the below Query please
Whenever the Integration (SIEM, Threat Intel) fails to ingest Incidents\Feeds on Demisto, is there any way that we can get notifications on mail about the Integrations status?
Regards,
Yeswanth M.
Hi, How to filter out the incidents ingestion in to demisto from Qradar based on time.
Eg:
I have been integrated Demisto with Qradar on today and i want to start recieveing offences only generated from today.
We have done some filtering to recieve only
...
