This website uses cookies essential to its operation, for analytics, and for personalized content. By continuing to browse this site, you acknowledge the use of cookies.
For details on cookie usage on our site, read our Privacy Policy
For details on cookie usage on our site, read our Privacy Policy
About LinsongGuo
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- LIVEcommunity
- About LinsongGuo
08-04-2023
8Posts
1Like
0Solutions
Aug 04, 2023Last Visited
User
Activity
User
Profile
Latest posts by LinsongGuo
| Subject | Views | Posted |
|---|---|---|
| 442 | 08-01-2023 08:40 PM | |
| 739 | 05-07-2023 12:00 AM | |
| 807 | 05-03-2023 07:12 PM | |
| 868 | 05-03-2023 01:01 AM | |
| 459 | 04-20-2023 06:57 PM | |
| 2216 | 01-09-2022 01:13 PM | |
| 2333 | 01-06-2022 12:57 AM | |
| 2196 | 11-04-2021 10:51 PM |
My Liked Posts
| Subject | Likes | Posted |
|---|---|---|
| 1 Like | 01-06-2022 12:57 AM |
Posts I Liked
| Subject | Likes | Author | Latest Post |
|---|---|---|---|
| 1 Like |
User Badges
Community Statistics
| Member Since | 11-02-2021 02:43 PM |
| Date Last Visited | 08-04-2023 02:27 AM |
| Posts | 8 |
| Total Likes Received | 1 |
08-02-2023
10:32 AM
Hello LinsongGuo,
In these cases usually we recommend to check the hardware is up to standard, following this article: https://docs-cortex.paloaltonetworks.com/r/Cortex-XSOAR/6.10/Cortex-XSOAR-Administrator-Guide/System-Requirements
... View more
05-07-2023
12:00 AM
I actually find the problem is on the REST API configuration, and API ID should be leave as blank rather than have an value. not sure why but that is how I get rid of the error
... View more
04-24-2023
10:32 AM
I tested those exact steps and was able to create and view the artifacts as intended so it is possible that the amount of artifacts could be the culprit. I would recommend following these steps on our docs page here to archive older artifacts to reduce that number. If after that you still have issues I would create a ticket with support. Thanks!
... View more
01-09-2022
07:07 PM
@LinsongGuo It's best you mark this as Solved and create a new topic in the XSOAR forum.
... View more
11-09-2021
07:16 AM
1 Kudo
Take a look at the automation script widgets here: https://docs.paloaltonetworks.com/cortex/cortex-xsoar/6-2/cortex-xsoar-admin/widgets/create-a-custom-widget-using-an-automation-script/widget-type-examples-using-automation-scripts.html As an example for you use case (and assuming you have fields called "True Positive" and "False Positive" that are boolean (bear in mind this is pseudo code and not tested): page = 0
size = 100
table_results = dict()
data = demisto.executeCommand("getIncidents", {"page": page, "size": size})[0]['Contents']
while data.get('data'):
for incident in data.get('data'):
inc_type = incident.get('type')
custom_fields = incident.get('CustomFields')
if inc_type not in table_results:
table_results[inc_type] = {
"True Positive": int(custom_fields.get('truepositive')) or 0,
"False Positive": int(custom_fields.get('falsepositive')) or 0,
"Duplicate": custom_fields.get('dropppedcount') or 0,
}
else:
if custom_fields.get('truepositive'):
table_results[inc_type]['True Positive'] += 1
if custom_fields.get('falsepositive'):
table_results[inc_type]['False Positive'] += 1
table_results[inc_type]['Duplicate'] += incident.get('droppedcount')
page += 1
data = demisto.executeCommand("getIncidents", {"page": page, "size": size})[0]['Contents']
return_results = [{
"Type": k,
"True Positive": v.get('True Positive'),
"False Positive": v.get('False Positive'),
"Duplicate": v.get('Duplicate')
} for k, v in table_results.items()]
return_results(return_results)
... View more
LEGAL NOTICES
Copyright 2007 - 2023 - Palo Alto Networks