We have configured the RSS integration in the community supported RSS content pack (https://xsoar.pan.dev/marketplace/details/RSS) to ingest CISA NCAS alerts as incidents for our threat intel teams to investigate. This is using the public feed at ht
...
The connection has been tested sucessfully but error during executing commands
Got a QRadar integration.
It's suppose to pull back offenses with magnitude > 4
However, our metrics are much higher than what the client expects.
When reviewing this case got pulled into XSOAR:
However, when exporting QRadar, the incident has the foll
Hello Everyone,
Yesterday, I have observed delayed in offenses which comes from QRadar into XSOAR. I am confused with this type of behavior from XSOAR.
Offense which is triggered in QRadar : 29-03-2022 23:00PM
Same offense/Alerts is created in XSOAR :
...
Workflow:
From the Incidents page / table, select multiple incidents.
Click the "Close" button that allows closing multiple incidents at one time.
My close form comes up. I have a field trigger script on one of the fields.
It doesn't look like that fiel
nikoolayy1
on:
Playbook access to malicious website
