This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

Cortex XSOAR Discussions

Cortex XSOAR enables SOC analysts to manage alerts across all sources, standardize processes with playbooks, take action on threat intel, and automate response for any security use case.
cancel
Turn on suggestions
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Cortex XSOAR Discussions
Cortex XSOAR enables SOC analysts to manage alerts across all sources, standardize processes with playbooks, take action on threat intel, and automate response for any security use case.
About Cortex XSOAR Discussions
Cortex XSOAR enables SOC analysts to manage alerts across all sources, standardize processes with playbooks, take action on threat intel, and automate response for any security use case.

Discussions

Start a conversation

Resolved! Need help on extract indicators from Email body

Hello Team,

 

I have developed a playbook which extract indicators like IP,URL,Domain and Hash from Email body.

but in some cases extract indicators and other automation which are available in xsoar cannot extract domains.

can anyone suggest me how to ex

...

Priyash7 by L0 Member
  • 3984 Views
  • 3 replies
  • 0 Likes

Extracting urls from html text

when I extract indicators from body of an email (the body of the email is in html format). I don't get the URLs, only the domains inside the URLs are extracted but the URLs itself not extracted.

 

what I understand in extracting domains, that it work

...

No download Link

Hello

 

I have received my license over email but the email does not contain any download link. Where can I get the files?

 

Thanks.

JDiaz15 by L1 Bithead
  • 1851 Views
  • 5 replies
  • 0 Likes

Resolved! Access a list from an integration

To access a list from an automation I use something like:

json = json.loads(demisto.executeCommand("getList", {"listName": "blabla"})

However, from an integration I cannot use the executeCommand method. Is there any way to access a list from an inte

...

rdevega by L0 Member
  • 2873 Views
  • 3 replies
  • 0 Likes

XSOAR Ideal Development Environment

Hi everyone, we are a small team of 3 and trying to understand if we request more resources than necessary from our admins. We all have our own xsoar instances for development because we don't want to write to the same automation someone else is work

...

Teams integration in xsoar

Hi , I have few queries reg teams integration in xsoar. If we are integrating teams Using Cortex XSOAR rerouting
1. what port should be opened from XSOAR
2. What Urls should be whitelisted from XSOAR

3.if we are Creating the Demisto Bot in Microsoft Te

...

Import XSOAR incidents into MySQL DB

Hello all,

 

I have MySQL DB to collect data from different projects/products and using Metabase to create dashboards. I would like to import all incidents into MySQL DB from XSOAR. Is there any integration can do it directly or I have to write pytho

...

ce13 by L1 Bithead
  • 1159 Views
  • 2 replies
  • 0 Likes

Resolved! Content package is not able to update

Hi Friends,

 

 we are trying to update the content package and integrate it with any package into XSOAR it's showing the error:


Could not install pack: could not create content item from file 'Lists/list-PrivateIPs.json'. invalid content item type 'l

...

VinayKumarTM_0-1677851287923.png
  • 1184 Posts
  • 39 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks