Cortex XSOAR Discussions
Cortex XSOAR enables SOC analysts to manage alerts across all sources, standardize processes with playbooks, take action on threat intel, and automate response for any security use case.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Cortex XSOAR Discussions
Cortex XSOAR enables SOC analysts to manage alerts across all sources, standardize processes with playbooks, take action on threat intel, and automate response for any security use case.
About Cortex XSOAR Discussions
Cortex XSOAR enables SOC analysts to manage alerts across all sources, standardize processes with playbooks, take action on threat intel, and automate response for any security use case.

Discussions

XSOAR Search queries

Hello Team,

 

Trying to remove tags from multiple cases at one go however failed due to incorrect syntax.

 

  • !lr-case-tags-remove case_id:"16563,16532,16626" tag_numbers=154

    Should it be split into multiple lines to execute? could someone assist me wi

...

Parans by L0 Member
  • 1100 Views
  • 1 replies
  • 0 Likes

Resolved! Creation of table from arrays

I am trying to create a table something like this:

 

 

I already have arrays (of names in this example) for each situation. So my HasX array would be like ["John", "Roger"] and my 'doesn't have X' array would be ["Steve"], and similar for Y with ["R

...

JMaton1_1-1665053040919.png
JMaton1 by L1 Bithead
  • 2134 Views
  • 2 replies
  • 0 Likes

Resolved! not able to retrieve Extend Context Output

Hi Team, 

 

I'm trying to get the output field which I want in "jira-issue-query" command. But I couldn't be able to get it. 

Below are the default outputs for Jira Issue. Now I want only one particular Field as an output.

So I used Extend Context f

...

Keerthigav_0-1675825392522.png
Keerthigav_1-1675825630484.png

Docker Hardening

Hello,

 

I followed this docker hardening documentation to harden the docker containerzied environment for Cortex XSOAR solutin. 

 

I added the first server configuration key as this (docker.run.internal.asuser = true), and reset docker containers th

...

  • 1111 Posts
  • 34 Subscriptions
Top Solution Authors