Cortex XSOAR Discussions
Cortex XSOAR enables SOC analysts to manage alerts across all sources, standardize processes with playbooks, take action on threat intel, and automate response for any security use case.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Cortex XSOAR Discussions
Cortex XSOAR enables SOC analysts to manage alerts across all sources, standardize processes with playbooks, take action on threat intel, and automate response for any security use case.
About Cortex XSOAR Discussions
Cortex XSOAR enables SOC analysts to manage alerts across all sources, standardize processes with playbooks, take action on threat intel, and automate response for any security use case.

Discussions

Fail to connect to Marketplace

Hello,

Having installed XSOAR v6.8 in RH7.6, also configured Docker too.

Proxy and internal DNS is required in our environment.

Configured the Proxy on both WebUI and Docker as well.  

We could login to GUI, but we cannot reach the marketplace.

Found

...

Resolved! CrowdStrike Falcon detection mirroring

Hi there, I hope to find some help here.
We are facing issues to make the CrowdStrike Falcon mirroring options work. @
We are following the instruction provided in the documentation https://xsoar.pan.dev/docs/reference/integrations/crowdstrike-falcon 

H

...

Isabelle by L0 Member
  • 3427 Views
  • 2 replies
  • 0 Likes

Credential management in XSOAR

Hi,

 

How are the credentials for the integrations handled within the product? I.e., are passwords and keys stored in the cloud?

And how are these managed securely?

 

Thanks,

 

DP696 by L2 Linker
  • 1670 Views
  • 1 replies
  • 0 Likes

Resolved! XSOAR Engine Backup/Restore

Background:
In our XSOAR platform setup, the XSOAR server is cloud hosted by Palo Alto and the XSOAR engines are deployed at 2 different data centers (on-prem).  Each of these datacenters will have a single Cortex XSOAR engine server installed, which

...

gnakhede by L1 Bithead
  • 2207 Views
  • 2 replies
  • 0 Likes

Are XSOAR incident type updated?

Hello,

When an incident comes to XSOAR the classifier set the incident type.

I would like to know if the incident is updated with new alerts (for ex. in Cortex XDR), will the incident type in XSOAR be updated if needed or is the type set and never ch

...

lulu42 by L0 Member
  • 1321 Views
  • 1 replies
  • 0 Likes

Resolved! RHEL Installer Type and Podman Installation Steps

1. What RHEL installer type (minimal or full fledge GUI) should be considered for XSOAR engine server?

 

2. Is there any documentation by Palo Alto on Podman proxy configuration for XSOAR Engine installation and any specific URLs required to be white

...

gnakhede by L1 Bithead
  • 2462 Views
  • 3 replies
  • 0 Likes

Rasterize PDF format queries

Hi,

 

I created a PDF report using rasterize with HTML body content. The XSOAR variables I put contains URLs and Email addresses.

My first challenge i faced was the variables when replaced with the acutal values (URLs and emails), they are clickable.

...

XSOAR Engine Storage Requirements

Hi,

 

As per the below link its mentioned minimum storage requirement for XSOAR engine is 100 GB. And for drive partition it is recommended to allocate 50 GB for /var and 50 GB for /home is XSOAR engine is getting installed on RHEL 8.x. In this case

...

DP696 by L2 Linker
  • 1626 Views
  • 1 replies
  • 0 Likes
  • 1114 Posts
  • 34 Subscriptions
Top Solution Authors
Top Liked Authors