Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

readme xsiam #19402

Merged
merged 9 commits into from
Jun 8, 2022
Merged

readme xsiam #19402

merged 9 commits into from
Jun 8, 2022

Conversation

yucohen
Copy link
Contributor

@yucohen yucohen commented Jun 6, 2022

Contributing to Cortex XSOAR Content

Make sure to register your contribution by filling the contribution registration form

The Pull Request will be reviewed only after the contribution registration form is filled.

Status

  • In Progress
  • Ready
  • In Hold - (Reason for hold)

Related Issues

fixes: link to the issue

Description

A few sentences describing the overall goals of the pull request's commits.

Screenshots

Paste here any images that will help the reviewer

Minimum version of Cortex XSOAR

  • 6.0.0
  • 6.1.0
  • 6.2.0
  • 6.5.0

Does it break backward compatibility?

  • Yes
    • Further details:
  • No

Must have

  • Tests
  • Documentation

@ShirleyDenkberg ShirleyDenkberg self-assigned this Jun 7, 2022
@ShirleyDenkberg
Copy link
Contributor

@yucohen Doc review completed.

@ShirleyDenkberg ShirleyDenkberg removed their request for review June 7, 2022 07:14
@yucohen yucohen requested a review from tomer-pan June 7, 2022 11:20
@yucohen yucohen merged commit a4b9233 into master Jun 8, 2022
@yucohen yucohen deleted the jamf_readme branch June 8, 2022 13:21
MosheEichler pushed a commit that referenced this pull request Jun 8, 2022
@yucohen @ShirleyDenkberg
@tomer-pan @MosheEichler
readme xsiam (#19402)
8f33a98 
* readme xsiam

* readme xsiam

* Update README.md

Done.

* README

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>
Co-authored-by: tomer-pan <thaimof@paloaltonetworks.com>
MosheEichler added a commit that referenced this pull request Jun 9, 2022
@MosheEichler @richardbluestone
@julieschwartz18 @idovandijk @avidan-H @tomer-pan @content-bot @davidt99 @ShacharKidor @bziser @yuvalbenshalom @yucohen @ShirleyDenkberg @GuyAfik @JudahSchwartz @Shellyber @tkatzir @dorschw
Cyber ark xsiam Demo fixes (#19435)
2f7c2e0 
* create the pack

* first call

* access token

* add the first fetch

* start using api module

* event fields

* add custom classes

* change name

* use siem api module

* last fixes

* duplicates

* add ut

* remove unnecessary functions

* remove unnecessary functions

* fix the ut

* path

* docker

* remove

* remove

* fix validate

* meta data description

* added readme

* fix ut

* Update 1_0_0.md

* Update CyberArkEventCollector.yml

* Update README.md

* revert changes

* lint error

* remove release notes

* after

* cyberArk version

* docker

* add modeling rules

* remove missing

* fix the name fo the modeling rules

* add more fileds

* add more fields

* cr fixes

* send events

* add argument

* generic rules

* add modeling rules

* mention the problems

* remove audit from auth

* remove audit from auth with problem

* coalesce function

* remove pip

* post

* one model

* add descripption

* added schema

* added description

* first fetch

* mdx error

* post

* folder structure

* update last run

* fix ut

* secrets

* more fields to map

* remove xsoar

* add pack readme

* fixed modeling rules

* limit

* fix description

* fix readme

* description

* RN

* Update CyberArkIdentityEventCollector.yml

Doc review complete for this file, minor edits

* Update 1_0_1.md

Doc review complete for this file, minor edits.

* Update CyberArkIdentityEventCollector.yml

Updated display terms

* Update README.md

Doc review complete for this file. Updated descriptions

* Update CyberArkIdentityEventCollector_description.md

Doc review complete for this file, updated descriptions

* fix for pb and added rasterize to test (#19413)

* fix for pb and added rasterize to test

* updated pb

* format

* reverted getoriginalemail

* manually fixed tests (format didnt work)

* RN

* fixed O365KQL query

* Add GetErrors PB Error Handling Utility Script (#19311)

* feat(base): add GetErrors pb error handling utility script

fix(geterrors): address crs

fix: add lastCompletedTaskEntries to known words list

fix: increase unit tests coverage

fix(docs): update the release notes

fix: move script to CommonScripts pack

fix: update name to GetErrorsFromEntry

* feat: make entry_id argument not required

* docs: add type annotation to the get_errors function

* docs: format the get_errors function docstring

* docs: add descriptive comment for entry_id argument

* feat: use lastCompletedTaskEntries from context if entry_id arg is not passed

* fix: tidy up code groupings in main function

* test: add more unit tests for the various entry_id argument possibilities

* docs: fix mistake in get_errors function docstring

Co-authored-by: avidan-H <>

* Illusive connector (#19399)

* illusive add modeling rules

* RN

* syntax

* syntax

* syntax

* syntax

* README

* README

* README

* fix(intezer): set URL dbot score (#19407) (#19463)

* fix(intezer): set URL dbot score

* fix(intezer): set URL dbot score

* fix(intezer): set URL dbot score

* fix(intezer): set URL dbot score

* feat(intezer): add iocs command

* Apply suggestions from code review

Co-authored-by: Shachar Kidor <82749224+ShacharKidor@users.noreply.github.com>

* feat(intezer): add iocs command

* feat(intezer): add iocs command

* feat(intezer): add iocs command

* feat(intezer): add iocs command

* feat(intezer): add iocs command

Co-authored-by: Shachar Kidor <82749224+ShacharKidor@users.noreply.github.com>

Co-authored-by: davidt99 <davidtufik@gmail.com>
Co-authored-by: Shachar Kidor <82749224+ShacharKidor@users.noreply.github.com>

* Proofpoint TAP - Added 'Proofpoint TAP Long Subject' incident field (#19460)

* added long subject

* added long subject

* added long subject

* Update Packs/ProofpointTAP/ReleaseNotes/1_1_17.md

Co-authored-by: yuvalbenshalom <ybenshalom@paloaltonetworks.com>

Co-authored-by: yuvalbenshalom <ybenshalom@paloaltonetworks.com>

* readme xsiam (#19402)

* readme xsiam

* readme xsiam

* Update README.md

Done.

* README

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>
Co-authored-by: tomer-pan <thaimof@paloaltonetworks.com>

* Update SaaS Security modeling rule (#19440)

* fix

* remove XDM duplication entites

* bump rn

* add known words

* known words

* remove duplicates

* Update Packs/PrismaSaasSecurity/ReleaseNotes/2_0_1.md

Co-authored-by: Judah Schwartz <JudahSchwartz@users.noreply.github.com>

Co-authored-by: Judah Schwartz <JudahSchwartz@users.noreply.github.com>

* Update Docker Image To demisto/crypto  (#19455)

* Updated Metadata Of Pack AzureCompute

* Added release notes to pack AzureCompute

* Packs/AzureCompute/Integrations/AzureCompute_v2/AzureCompute_v2.yml Docker image update

Co-authored-by: sberman <sberman@paloaltonetworks.com>

* Fix modeling rule (#19462)

Fix modeling rule

* ServiceNowV2 - Rollbacked the removal of the 'sn_si_incident' ticket type (#19400)

* sn_si_incident

* rn

* Update Packs/ServiceNow/ReleaseNotes/2_3_11.md

Co-authored-by: dorschw <81086590+dorschw@users.noreply.github.com>

* sn_si_incident

Co-authored-by: dorschw <81086590+dorschw@users.noreply.github.com>

* improve visibility

* events

* Update 1_0_1.md

Fixed prefixes for updates

* Update README.md

Doc review complete for this file, confirmed by @bakatzir that no additional information is needed.

* fix the duplicates

* remove README pack

* array index

* observation_timestamp

Co-authored-by: Richard Bluestone <53567272+richardbluestone@users.noreply.github.com>
Co-authored-by: julieschwartz18 <91824591+julieschwartz18@users.noreply.github.com>
Co-authored-by: Ido van Dijk <43602124+idovandijk@users.noreply.github.com>
Co-authored-by: avidan-H <46294017+avidan-H@users.noreply.github.com>
Co-authored-by: Tomer Haimof <81556849+tomer-pan@users.noreply.github.com>
Co-authored-by: content-bot <55035720+content-bot@users.noreply.github.com>
Co-authored-by: davidt99 <davidtufik@gmail.com>
Co-authored-by: Shachar Kidor <82749224+ShacharKidor@users.noreply.github.com>
Co-authored-by: Binat Ziser <89336697+bziser@users.noreply.github.com>
Co-authored-by: yuvalbenshalom <ybenshalom@paloaltonetworks.com>
Co-authored-by: yucohen <86777474+yucohen@users.noreply.github.com>
Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>
Co-authored-by: tomer-pan <thaimof@paloaltonetworks.com>
Co-authored-by: Guy Afik <53861351+GuyAfik@users.noreply.github.com>
Co-authored-by: Judah Schwartz <JudahSchwartz@users.noreply.github.com>
Co-authored-by: sberman <sberman@paloaltonetworks.com>
Co-authored-by: tkatzir <tkatzir@paloaltonetworks.com>
Co-authored-by: dorschw <81086590+dorschw@users.noreply.github.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@tomer-pan tomer-pan tomer-pan approved these changes

Assignees

@ShirleyDenkberg ShirleyDenkberg

Labels
docs-approved
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@yucohen @ShirleyDenkberg @tomer-pan