This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
Cortex XSOAR Discussions
Cortex XSOAR enables SOC analysts to manage alerts across all sources, standardize processes with playbooks, take action on threat intel, and automate response for any security use case.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Cortex XSOAR Discussions
Cortex XSOAR enables SOC analysts to manage alerts across all sources, standardize processes with playbooks, take action on threat intel, and automate response for any security use case.
About Cortex XSOAR Discussions
Cortex XSOAR enables SOC analysts to manage alerts across all sources, standardize processes with playbooks, take action on threat intel, and automate response for any security use case.

Discussions

Start a conversation

How to Find and update existing incidents through Integration

Hi, We are providing partner integration for our product and this is the requirement. My product # generates/creates 'Cases' which are pulled inCortex XSOAR as incidents using fetchIncidents call. It might be possible that sometimes a 'Case' in our product gets updated and gets pulled in XSOAR again. The custom attribute used here is caseId ...

sudhesub by L1 Bithead
  • 4149 Views
  • 4 replies
  • 0 Likes

Resolved! Script-based Widget

I want to design a widget. This widget will appear on the dashboard. But I want this widget to work only once a day. How can I do this? Cortex XSOAR

Trigger a usecase by sending an email to an email address (Dedicated) owned by Paloalto

I would like to explore an option to trigger a use case by forwarding or sending the email to a cortex email address (Dedicated) to a client and trigger a playbook from there. (Something like client@paloalto.com) and then it creates an incident and we can trigger the playbook from there. Is there a way to do this? Cortex XSOAR #Playbook_Tr...

Resolved! ERROR ModuleNotFound on XSOAR

Hi, While trying to run the PANORAM integration we are facing this issue: Script failed to run: Error: Error [[Traceback (most recent call last): File "<string>", line 12, in <module> ModuleNotFoundError: No module named 'panos' ]] - Stderr [] (2601) Stderr: Traceback (most recent call last): File "/var/lib/demisto/temp/script483...

Getting Started

Greetings--I'm a data analyst who is adept at using tools like Tableau, R, MS Access, MySQL, and PowerBI to analyze both large and small datasets to find patterns, tell stories, visualize data, etc. A cousin who first got me on the path for administering Palo Alto firewalls unwittingly set my path toward Cortex XSOAR # as well. Looking for adv...

Problem with AppendindicatorFieldWrapper script

Hi! When we run the appendIndicatorField task, the last IP address of an array never gets tagged. Please see the following examples for clarification: Example 1: works fine !appendIndicatorField indicatorsValues="134.122.135.178" field="tags" fieldValue="BlockPA" using-brand="Builtin" Example 2: tags IP 134.122.135.178, doesn't tag IP 43.1...

adocasar by L1 Bithead
  • 3196 Views
  • 3 replies
  • 0 Likes

Browserling integration

Dears,we are trying to integrate with browserling which is not supported by default on XSOAR marketplace.and to this integration we need to do the following:1- First, we need to load browserling.js library.2- Then we create a new Browserling object with the session token.3- Then, we configure the browser.4- And finally, we embed the iframe conta...

Resolved! Using Slack Block Builder renders "submit" button that is unwanted and not found in the JSON Blocks

Hello all, I am developing a use-case in which a message is sent to a Slack channel containing a Slack block using Slack Block Builder. The message is sent and then received on the Slack Channel but there is a submit button which is appearing even though it is not defined in the Slack Block JSON. How can I remove it ? The use-case has an accompa...

Resolved! Slack Bot keeps sending messages to users

Occasionally, the bot sends the message in the screenshot below to our users in no particular order. We don't know why that is happening. One time a certain user reported that every time he gets a message from a coworker the bot sends this message to both the message receiver and and sender of the conversation. It kept on quite a while and then ...

EnesOzdemir_0-1683792595677.png

Cortex XDR Crowdstrike Layouts

Hello, I have just onboarded the crowdstrike integration into Cortex XDR. I am looking to modify the incident layout of the incidents themselves and the option is not available. Instead, inside a Crowdstrike Incident I have to usually go to Crowdstrike itself to take any actions on an event from the XSOAR platform. All other incidents and integr...

  • 1300 Posts
  • 45 Subscriptions
Top Liked Authors
View All
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks