Hi all,
Do we community license available for cortex XSOAR to be used on mac?
Thanks
We are trying to create a pre-process rule to link and close the incident when certain field values are identical but still incidents are getting created for identical values. Please find the attached snip.
I'm trying to create incidents from a Cortex XSOAR SIEM integration. The integration allows me to list alerts and I'm trying to create an incident for each one. When I run the playbook, the list alerts command returned multiple entries, but the creat
...
Hi,
I need a job or another mechanism to detect if last incident creation time is older than 1 hour or a given time period to detect if there is an incident pull problem in SOAR or a siem centric problem.
Regards.
Hi
we need to integrate DEVO with XSOAR, in order to manage all alerts and be abe to query DEVO. First step is to get all alerts, so we have installed the "Devo v2 (Partner Contribution)" addon into XSOAR and followed the instructions, from https://x
...
Hello,
I'm downloading a zip file via API with this request:
it's supposed that my "response" variable now it's the zip file, however when I try to open, I can't, it's like it doesn't e
...
We have a playbook task that sends a query to run on Splunk using the SplunkPy but it keeps failing and returning the following error
#22: Splunk Search Query
Command:
!splunk-search query="index= test blah blah" earliest_time="1666679348" latest_ti
Hi all,
I need to provide an externally uploaded configuration file to a playbook whose content varies periodically (it's a list of names). What is the best way to do this? The user who uploads the file can access the XSOAR GUI interface with an Anal
...
Receiving more business from a customer for some of their other entities.
I need to rename an XSOAR tenant to be more pointed -
Is there any instructions on renaming.
Can i just stop the tenant and rename the folder on the backend; assume there's
Hello,
I'm sending an email to the users and I wait for 3 possible answers. However, sometimes the users are outside the office and I receive and automatic answer. How can avoid this, and only wait for the 3 possible ones.
I have an integration between McAfee ESM (SIEM) that produces Alerts. 95% of alerts are received by the XSOAR including the "Summary" which is essentially the Alert Packet. Every few days some alerts are received that do not contain the summary. So e
...
Hello
I've configured the Palo Alto Networks WildFire v2 Service with a Wildfire-API Key from our Wildfire-Account at https://eu.wildfire.paloaltonetworks.com/wildfire/account
I also use this Server base URL: https://wildfire.paloaltonetworks.com/publ
...
Hello,
I have any issue with generating reports in PDF and CSV formats, as it takes about 10-15mins to generate the report. This issue doesn't exist with word doc.
I tried this multiple times as i thought that the docker image for those tasks mayb
...
I am having difficulty integrating the XDR Integration. I have followed the instructions and have generated an "Advanced Key", copied the Key and the Key ID + URL. I have inserted the relevant details on the Instance Settings. When I perform "Test" I
...
