Cortex XSOAR Administrator Guide - Palo Alto Networks Create an Incident Summary Report - Create and generate a custom Incident Summary report in Cortex XSOAR, from the incident page Save reports as templates - Administrator Guide - 8 - Cortex XSOAR - Cortex - Security Operations Cortex XSOAR Administrator Guide Product Cortex XSOAR Version 8 Creation date 2024-09-18 Last date published 2025-04
GenerateSummaryReports | Cortex XSOAR Generates a report summary for past incidents Script Data# Name Description; Script Type: javascript: Tags: Utility: Cortex XSOAR Version: 4 1 0+ Inputs# Argument Name Description; name: Template name of the generated report in the incident type: The report type to generate ids: The incident IDs for which to generate
Generate Investigation Summary Report - Palo Alto Networks Solved: Hi I have used the automation Generate Investigation Summary Report to generate a report of particular incident But I am not - 548758 Issues with Report Creation in Cortex XSOAR 6 12 Free Edition in Cortex XSOAR Discussions 07-28-2024; playbook user investigation - generic in Cortex XSOAR Discussions 03-13-2024;
SearchIncidentsSummary | Cortex XSOAR Supported Cortex XSOAR versions: 6 0 0 and later Searches Cortex XSOAR Incidents Default search range is the last 30 days, if you want to change this, use the fromDate argument Returns the id, name, type, severity, status, owner, and created closed times to context You can add additional fields using the add_field_to_context argument
Logs - Administrator Guide - 8 - Cortex XSOAR - Cortex - Security . . . These logs are a valuable tool in troubleshooting issues that might arise in your Cortex XSOAR environment Logs - Administrator Guide - 8 - Cortex XSOAR - Cortex - Security Operations Create an incident summary report; Manage indicators; Query indicators; View indicator relationships in an investigation; Threat Intel Management;
Send Investigation Summary Reports | Cortex XSOAR Iterates over closed incidents, generates a summary report for each closed incident, and emails the reports to specified users Dependencies# This playbook uses the following sub-playbooks, integrations, and scripts Sub-playbooks# This playbook does not use any sub-playbooks Integrations# Builtin; Scripts# SearchIncidentsV2
Cortex XSOAR - NCSI The Cortex XSOAR mobile application provides dashboards, task lists, and incident ac-tions on the go Automated mapping across integrations Mirrored connections can be created with other applications so incident updates in Cortex XSOAR will be pushed automatically to third-party applications (ServiceNow, Jira,
How to Search - Search Cortex XSOAR using Lucene query syntax, the . . . Using the search box: searches for incidents, entries, evidence, investigations, and indicators in Cortex XSOAR The search box appears in the top right hand corner in every page You can either type free text or search using the search query format (use the arrow keys to assist you in the search)
Cortex XSOAR On-prem Documentation - docs-cortex. paloaltonetworks. com By default, the Incidents page displays all open incidents from the last seven days You can customize which incidents are displayed by creating and saving queries When you start typing your search, Cortex XSOAR lists all the indexed fields, such as type and severity, including custom and out-of-the-box fields The search follows the Bleve query syntax, which is similar to the Lucene query
GenerateInvestigationSummaryReport | Cortex XSOAR Generates an investigation summary report in an automated way This can be used in post-processing flow as well Script Data# Name Description; Script Type: javascript: Tags: post-processing: Cortex XSOAR Version: 3 5 0+ Inputs# Argument Name Description; name: The report name to generate (should correspond with report type) type: The report