Alert when XSOAR doesn't fetch incidents for a certain integration.

Is there a way to receive an alert when no incidents are fetched in XSOAR for a certain integration for by example 24 hours. Not related to integration issues but if the integration works but nothing is fetched? 

Would be beneficial to know if there i

Properly aligned and comprehensive report for XSOAR Incident

Hi all,

The current XSOAR incident report is unclear and poorly formatted. We need a properly aligned report to serve as the basis for our reporting.

Is there any way for this or any available template that we could use?

Thanks in advance.

XSOAR keeps firing the same incident

Hi All,

My XSOAR instance is a cloud hosted environment running on the latest version 8 build.

I have a playbook that sends a notification email to a user in response to a change in their account settings to confirm if recognized. The user is req

Issue with timestamp_range_start and timestamp_range_end Dates in XSOAR Elasticsearch Integration Command

Dashboard Graph Display Incident Count Per Month

Hello Live, 

I have a simple yet trivial question regarding displaying a graph showing each month's incident count consecutively. I can see it groups the count in a non-specified month order. Please see the graph below and take note of the seemingly

XSOAR 8 + Export Data to On-premise for Retention Compliance

Hello all, 

I have an XSOAR 8.+ tenant and need to store my incidents from up to two years ago. I understand that by default XSOAR retention policy retains incidents based on license etc. Is there a way to export the data that is half a year old to a

Integration of SIEM Instances with Load Balancer IPs

Can we integrate two instances of the SIEM, given that both IP addresses belong to the same SIEM but are associated with load balancer IPs? However, if we integrate both instances, there is a slight chance of data duplication. What would be the best

Owner field default value

In the new Incident Creation Form in Cortex XSOAR. Is it possible to change the default value of the "Owner" field ? Ideally to NA (No Owner Assigned)?

Incident Parent-Child Relationship

I'm looking to establish a hierarchical relationship for linking incidents in XSOAR, specifically a parent-child structure. Currently, the platform allows for linking incidents without hierarchy and creating child incidents under a parent ticket. How

XSOAR Reports and Count Problems

Hi,

We create two different queries by changing the date range in the reports. These two queries show a different number of incidents for the same day (Jun 24).

We tried various queries in the query field. The result did not change both with and wi

Widget error when Report is scheduled

Hello,

I created a simple widget using Python. The code fetches a list from XSOAR, extracts a number, and the widget displays that number. Nothing more.

The widget works perfectly when viewed in the report interface or when executed in the playground

Install Docker Images In XSOAR

Hi Everyone, I need to run phishing model and for that I need demisto/ml docker image. I intsalled machine learning content pack but still not get or see this docker image thats why I'm unable to run that model. I also ready info from here but still