Cortex XSOAR Discussions
Cortex XSOAR enables SOC analysts to manage alerts across all sources, standardize processes with playbooks, take action on threat intel, and automate response for any security use case.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
Cortex XSOAR Discussions
Cortex XSOAR enables SOC analysts to manage alerts across all sources, standardize processes with playbooks, take action on threat intel, and automate response for any security use case.
About Cortex XSOAR Discussions
Cortex XSOAR enables SOC analysts to manage alerts across all sources, standardize processes with playbooks, take action on threat intel, and automate response for any security use case.

Discussions

Drop and Update but NOT Create (Pre-Processing)

Hi,

 

I am trying to write some preprocessing rules to report on and update BitSight incidents. I only want to create incidents that have a grade of 'BAD' or 'WARN'. I do want to capture, however, when a given incident's grade is updated within BitSi

...

AFamera by L0 Member
  • 536 Views
  • 1 replies
  • 0 Likes

bitsight-company-findings-get automation

Hello,

 

I am attempting to use the 'bitsight-company-findings-get' command within my automation script, but I am getting an error after I run my script in the playground war room saying I'm using the invalid character '{' even though I copied the co

...

AFamera_0-1698881718740.png
AFamera_1-1698881866094.png
AFamera by L0 Member
  • 449 Views
  • 1 replies
  • 0 Likes

Resolved! Storing Incident Notes in Context Data

Hello all,

I am working on a use-case in which I need to store text based comments (Including MD) to context data for report generation. I have tried to create a script for this yet I have not succeeded. Is there a way to access the comment section i

...

Resolved! Working with lists

Hi , 

In the settings section i created a new list 

The list contains for example: 

 

TEST,Mon Oct 30 2023,Teva.com/\teva.co.il/\test@gmail.com,user1,
BBLTD,Mon Oct 30 2023,10.0.0.14/\DASD.com/\sdasdas.co.il,user1,
BBMA,Mon Oct 30 2023,10.0.0.14/\DASD.c

...

Resolved! "Request-URI Too Large"

Leveraging a "service desk plus" integration.  I can take the same request and send it via postman successfully, but XSOAR is choking on it with a URI too large error:


===Server Log====
Command being called is service-desk-plus-request-create

Failed t

...

JoshBoyd by L2 Linker
  • 694 Views
  • 2 replies
  • 0 Likes

Setting up a counter in XSOAR

Hello,

So we have a playbook that is meant to send alerts via email in strikes. In each strike there is a link to a survey that has only YES/NO answers and based on the answers given be the recipients of those emails we want the playbook to follow a

...

How to dynamic list in email template?

Hello,

 

I want to get a list data of unknown lenght into html body(list).
But I don't know how to do this.
For example, I am pulling a data. in one of them, data1 and data2 come. in the next one, data1, data2 and data3 come. how can I print them dynam

...

Resolved! Dashboard Widget

Hi , 
I have a Button that creates a note in the qradar , is there a way to mark this note as note so it will be showed in the layout in the note section.
Also I can get as a solution not to mark as note but to just to show the result in the layout.

Demisto Service Failed

Hi Everyone ,

 

We are running XSOAR instance with NFR license. 

 

Recently for unknown reasons, the demisto service stopped and is never coming up when we try to start. 

 

 

 

[root@localhost ~]# systemctl status demisto.service
● demisto.service -

...

Pavendhan_K_0-1684316963694.png
  • 920 Posts
  • 30 Subscriptions