Cortex XSOAR Discussions

Using Await for an email only for expected answers

Hello,

I'm sending an email to the users and I wait for 3 possible answers. However, sometimes the users are outside the office and I receive and automatic answer. How can avoid this, and only wait for the 3 possible ones.

Phone call from XSOAR

How can i make Phone calls from a playbook?

I found the twilio integration which is able to send SMS, but I'd rather make a phone call to the incident manager somehow.

Have you found any solution to this?

McAfee Integration not sending Summary of alerts to XSOAR for ingestion.

I have an integration between McAfee ESM (SIEM) that produces Alerts. 95% of alerts are received by the XSOAR including the "Summary" which is essentially the Alert Packet. Every few days some alerts are received that do not contain the summary. So e

...

Resolved! Timeout: Palo Alto Networks WildFire v2

Hello

I've configured the Palo Alto Networks WildFire v2 Service with a Wildfire-API Key from our Wildfire-Account at https://eu.wildfire.paloaltonetworks.com/wildfire/account

I also use this Server base URL: https://wildfire.paloaltonetworks.com/publ

...

Reports generation and download takes alot of time

Hello,

I have any issue with generating reports in PDF and CSV formats, as it takes about 10-15mins to generate the report. This issue doesn't exist with word doc.

I tried this multiple times as i thought that the docker image for those tasks mayb

...

Resolved! Xsoar - XDR Public API Unauthorised

I am having difficulty integrating the XDR Integration. I have followed the instructions and have generated an "Advanced Key", copied the Key and the Key ID + URL. I have inserted the relevant details on the Instance Settings. When I perform "Test" I

...

Resolved! How do I get the numeric incident id in an automation?

I'm working with a Python automation, and I need to get the numeric incident id. I expect this id to be numeric (123456) but it is always a long concatenated hex string and GUID.

incident = demisto.incidents()[0]
incident_id = incident['id']
print(inc

...

Resolved! split input to chunks with python

Hi,

I'm trying to build an automation which would take an array of objects as an input, split it to chunks of specified number and put in the context. E.g. I have 36 IP addresses, i want it to split to chunks of 10. The end result would be having t

...

XSoar Integration with cisco firepower

Dears,

I installed cisco firepower integration. from Market Place.

I use update network group objects command but actually it removes all the IP addresses inside this group and add the only list that I newly updated.

Kindly need your support.

...

Data presentation on XSOAR Web

Hi,

I have a use case where I want to share some sensitive data with users which should have an expiration date. I want data to be put on XSOAR web server, which I would have a link for and expire after certain time. I find similar funcionality wit

...

Questions for livebackup

Dears,

we now are installing a new server to be our live backup server, we have multiple questions regarding this Kindly need your answer :

1- Do we need a License for The Live backup Server????

2-Are the configuration and Data are moving in real time f

...

Resolved! User authentication

Hi,

Can we use Active Directory Authentication integration for authenticate users into XSOAR, when we are using Azure AD.

If not, what is the integration best suitable?

Thanks

Plot JSON list in Dashboards & Reports

Hello,

We're using a JSON list to store some metrics in XSOAR. We'd like to have all this information in a visual way at the dashboard so the analysts can see what's happening.

Resolved! How to get value in nested variable?

Hi all,

I want to value in list and i use ${list.list_name.${account_name}} but this is what happens after running that ${list.list_name.realaccountname}.
How can i do that?

Problem encoding/decoding introducing in a JSON list data

Hello,

I've some urls to introduce in a JSON list the command used are this one to encode:

#encode to ASCII

url.encode(encoding='ascii',errors="ignore").decode()

In the context the variable is perfect, however inside the JSON list it's not. Even

...

Discussions

Using Await for an email only for expected answers

Phone call from XSOAR

McAfee Integration not sending Summary of alerts to XSOAR for ingestion.

Resolved! Timeout: Palo Alto Networks WildFire v2

Reports generation and download takes alot of time

Resolved! Xsoar - XDR Public API Unauthorised

Resolved! How do I get the numeric incident id in an automation?

Resolved! split input to chunks with python

XSoar Integration with cisco firepower

Data presentation on XSOAR Web

Questions for livebackup

Resolved! User authentication

Plot JSON list in Dashboards & Reports

Resolved! How to get value in nested variable?

Problem encoding/decoding introducing in a JSON list data

Do we have XQL query builder feature in XSOAR

Where is the XSAOR 8 CLI Reference?

Pre Processing Rules Logs

XSOAR CMDB - SQL issue

Cortex XSOAR - Best Practice Optimize Threat Intelligence Management (TIM)

Re: Cortex XSOAR intergration with Terraform Cloud?

Splunk integration - Mirroring not working

Unlock your full community experience!

Resolved! Timeout: Palo Alto Networks WildFire v2

Resolved! Xsoar - XDR Public API Unauthorised

Resolved! How do I get the numeric incident id in an automation?

Resolved! split input to chunks with python

Resolved! User authentication

Resolved! How to get value in nested variable?