This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
Cortex XSOAR Discussions
Cortex XSOAR enables SOC analysts to manage alerts across all sources, standardize processes with playbooks, take action on threat intel, and automate response for any security use case.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Cortex XSOAR Discussions
Cortex XSOAR enables SOC analysts to manage alerts across all sources, standardize processes with playbooks, take action on threat intel, and automate response for any security use case.
About Cortex XSOAR Discussions
Cortex XSOAR enables SOC analysts to manage alerts across all sources, standardize processes with playbooks, take action on threat intel, and automate response for any security use case.

Discussions

Start a conversation

Resolved! Best Practice to Ignore or Exclude a list of Domains

I am looking for the "Best Practice" method to prevent emailed links from our Security Awareness tool being run through various sandboxes or detonations.I need to be able to create a list of domains/subdomains and then reference the list of domains so that any playbooks or incidents are automatically closed without analysis being performed on th...

cmcneil3 by L0 Member
  • 3071 Views
  • 1 replies
  • 0 Likes

Data Collection task customization send by email (email interface + the interface of the website opened from the generated url)

Hello.We are working on a data collection task sent by email and we would like to edit the interface of the sent email + the webpage that opens from the url generated in the email. I have found solutions for the interface of the sent email by setting two different server configuration keys.(messages.html.formats.externalFormSubmit + messages.htm...

Data Collection Fields

Hello all, Is there a way to add attachments to an email that is sent using the ask by email function under the data collection option? I am trying to link evidence to a case so the end user can view the evidence and then make decisions based off of it? I have tried editing the html to add links to the body, but that doesn't work unless they ha...

Resolved! CI/CD Process or Remote Repository UI on XSOAR

Hello, We are doubting whether to build a CI/CD Process or a Remote Repository UI on XSOAR. Looking to the table, CI/CD has more features. However, it doesn't allow you to work with Cortex XSOAR UI. This may mean that we will not be able to work with boxes, we will work directly with yaml and python. So is it possible to work this way? Or will...

Josep_0-1678715052853.png
Josep by L4 Transporter
  • 2644 Views
  • 2 replies
  • 0 Likes

How to pull data from Servicenow and show in drop down

Hi All We have a requirement where the assignee name from servicenow , must be pulled into xSOAR and be displayed as a drop down Currently assignee is a text field Request your guidance on where I have to update for pulling as a drop down from servicenow instead of giving predefined values in xSOAR Thankyou aparna

aparnaas by L1 Bithead
  • 2095 Views
  • 1 replies
  • 0 Likes

Cortex XSOAR / Let's Encrypt SSL Certificate

Hello, For those who publicly expose Cortex XSOAR and want to use let's encrypt as their SSL certificate provider. Public exposure of Cortex XSOAR # is not recommended You can have a look here : https://gist.github.com/lenoxys/e543cde35c3ff85f4c44f9b802bb3a06 Regards, Aurelien

How to solve Timeout error in market place

I faced a Timeout error while performing firs time update on content packs via marketplace after my community edition installation and it took me some time in resolving it so wish to share the solution if you have Installed Community edition and if you face Timeout error while trying to update content pack for first time via market place mak...

Reopen selected incidents in "Investigation" tab

Hello, I'd like to reopen the incidents selected after a query in Search Incidents. Not the result of the query, only the selected ones after the query, I'm trying to use the API commando to open them: body = {"id":f"{incident}","version":version}uri = f"/investigation/{incident}/reopen"status = demisto.internalHttpRequest('POST', uri, body=bo...

Josep_0-1680255394333.png
Josep by L4 Transporter
  • 2499 Views
  • 1 replies
  • 0 Likes

Markdown table export issue with linked URLs in Demisto

Hello everyone, I'm encountering an issue with exporting a markdown table from Demisto. The table contains multiple name bindings with URLs, but when attempting to export it to CSV format, the names that are linked to URLs do not export properly. I have included some screenshots below to better illustrate the problem. Has anyone else experienced...

shreyash_412_1-1680781066362.png
shreyash_412_2-1680781094600.png

XSOAR customer support problems

I have noticed that many of my recent support cases are being lodged into the XSOAR Queue rather than being assigned a support case owner. Is anyone else having this problem and can anyone advise how I get an update for these cases. I have tried calling Palo Alto support but the automated system tells me I do not have phone support and hangs up.

  • 1303 Posts
  • 45 Subscriptions
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks