Add Xpanse Scope for XDR Integration #31582
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
* update xpanse mp and docker * RN * Update Packs/CortexXDR/ReleaseNotes/6_0_11.md Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com> --------- Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>
content-bot
added
Contribution
johnnywilkes
suggested changes
Dec 20, 2023
Co-authored-by: johnnywilkes <32227961+johnnywilkes@users.noreply.github.com>
tkatzir
force-pushed
the
contrib/PaloAltoNetworks_XDR-EXPANDR-3361-2
branch
from
b95d94f
to
3db5d4d
Compare
content-bot
requested review from
ilaner,
dorschw,
yucohen,
michal-dagan and
Ni-Knight
as code owners
adi88d
approved these changes
Dec 24, 2023
kgal-pan
pushed a commit
that referenced
this pull request
Dec 24, 2023
* Add Xpanse Scope for XDR Integration (#31539) * update xpanse mp and docker * RN * Update Packs/CortexXDR/ReleaseNotes/6_0_11.md Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com> --------- Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com> * Update CortexXDRIR.yml * Update Packs/CortexXDR/Integrations/CortexXDRIR/CortexXDRIR.yml Co-authored-by: johnnywilkes <32227961+johnnywilkes@users.noreply.github.com> * Update CortexXDRIR.yml --------- Co-authored-by: johnnywilkes <32227961+johnnywilkes@users.noreply.github.com> Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com> Co-authored-by: Adi Daud <46249224+adi88d@users.noreply.github.com> Co-authored-by: adi88d <adaud@paloaltonetworks.com>
maimorag
pushed a commit
that referenced
this pull request
Dec 25, 2023
* Add Xpanse Scope for XDR Integration (#31539) * update xpanse mp and docker * RN * Update Packs/CortexXDR/ReleaseNotes/6_0_11.md Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com> --------- Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com> * Update CortexXDRIR.yml * Update Packs/CortexXDR/Integrations/CortexXDRIR/CortexXDRIR.yml Co-authored-by: johnnywilkes <32227961+johnnywilkes@users.noreply.github.com> * Update CortexXDRIR.yml --------- Co-authored-by: johnnywilkes <32227961+johnnywilkes@users.noreply.github.com> Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com> Co-authored-by: Adi Daud <46249224+adi88d@users.noreply.github.com> Co-authored-by: adi88d <adaud@paloaltonetworks.com>
kgal-pan
added a commit
that referenced
this pull request
Dec 28, 2023
* update integration * update readme * rm test conf * added eof newline * Add Xpanse Scope for XDR Integration (#31582) * Add Xpanse Scope for XDR Integration (#31539) * update xpanse mp and docker * RN * Update Packs/CortexXDR/ReleaseNotes/6_0_11.md Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com> --------- Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com> * Update CortexXDRIR.yml * Update Packs/CortexXDR/Integrations/CortexXDRIR/CortexXDRIR.yml Co-authored-by: johnnywilkes <32227961+johnnywilkes@users.noreply.github.com> * Update CortexXDRIR.yml --------- Co-authored-by: johnnywilkes <32227961+johnnywilkes@users.noreply.github.com> Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com> Co-authored-by: Adi Daud <46249224+adi88d@users.noreply.github.com> Co-authored-by: adi88d <adaud@paloaltonetworks.com> * [pre-commit] fix script runner (#31592) * SentinelOneV2 (#31687) * SentinelOneV2 (#31595) * removing the empty fields from a payload of remote-script * bumped version * updated release notes * Update Packs/SentinelOne/ReleaseNotes/3_2_15.md Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com> --------- Co-authored-by: munna-metron <82433049+munna-metron@users.noreply.github.com> Co-authored-by: Adi Daud <46249224+adi88d@users.noreply.github.com> Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com> * Updated file variable revert test variable (#30846) Updated file variable revert test variable * [Whois] test_socks_proxy UT failed (#31395) * Init test.py/sh to run in unittests-and-lint * add location commands to bash script * Remove running script with python3 * Restructure imports * Restructure imports * Show hidden files and permissions in test script * Temporarily comment out test.py script in CI * remove test.py script * remove commented out python test script * disable darwin service startup in bash script * Add execution permissions and update darwin command * Fix microsocks_darwin path * Add microsocks executable and enable netstat * Re-enable whois integration tests * Add tempfile, time and subprocess imports * Add sys import * Update Tests/scripts/test.sh * Update Tests/scripts/test.sh * Empty commit * Update test.sh with whois commands * Fix echo command * script fix * Add dig command * Empty commit * Empty commit * Empty commit * Empty commit * [VirusTotal] Fix missing suspicious value for running instances (#31684) * Fix missing suspicious value for running instances (#31648) * Update docker * Update docker * Update pack_metadata.json * Update pack_metadata.json --------- Co-authored-by: Daniel Pascual <danielvazquez@google.com> Co-authored-by: Adi Daud <46249224+adi88d@users.noreply.github.com> * un-skip test_socks_proxy UT * revert to origin * un-skip test_socks_proxy UT * Remove unnecessary files * Add necessary imports --------- Co-authored-by: Koby Meir <kobymeir@users.noreply.github.com> Co-authored-by: content-bot <55035720+content-bot@users.noreply.github.com> Co-authored-by: Daniel Pascual <danielvazquez@google.com> Co-authored-by: Adi Daud <46249224+adi88d@users.noreply.github.com> * delete test data files from repo (#31658) * NetskopeAPIv2 `alert_query` argument (#31690) * ParseEmailFiles: Update docker (#31683) * update docker * update rn * update rn * revert * update version * Adding Cloud Alerts Layout (#31118) * Change the field to be searchable * RN * Added missing scripts * Added new layout rule Added new layout updated scripts * UPDATED SCRIPT * Fixed more pre-commit errors * Updated RN Fixed issue with the widget * Removed un-required script * Removed un-required script * Removed un-required script * Removed un-required script * Added tests * Added a test for main * Added a test for main * Added a test for main * Added a test for main * Updated main test * Updated main test * Updated main test * Updated main test * removed main tests * removed main tests * fixed tests * added MP * added MP * Updated README.md * Updated README.md * removed unrequited import * pre-commit * Updated RN description * Bump pack from version CloudIncidentResponse to 1.0.10. * alert source * Added missing scripts * Added new layout rule Added new layout updated scripts * UPDATED SCRIPT * Fixed more pre-commit errors * Removed un-required script * Removed un-required script * Removed un-required script * Removed un-required script * Added tests * Added a test for main * Added a test for main * Added a test for main * Added a test for main * Updated main test * Updated main test * Updated main test * Updated main test * removed main tests * removed main tests * fixed tests * added MP * added MP * Updated README.md * Updated README.md * removed unrequited import * pre-commit * Updated RN description * alert source * Bump pack from version CloudIncidentResponse to 1.0.10. * [SanePdfReport] - Increase resourceTimeout (#31513) * added random.randint * pre-commit * added a retry * added a retry2 * added a retry3 * flake8 * fixed * test * Reverted to master --------- Co-authored-by: MLainer1 <93524335+MLainer1@users.noreply.github.com> Co-authored-by: Content Bot <bot@demisto.com> Co-authored-by: michal-dagan <109464765+michal-dagan@users.noreply.github.com> * fixed output typo * rm closing parenthesis * updated cmd sections to cmd names * rm closing bracket from arg description * changed default for kv collection to auto-generated * update rn * Update pack_metadata.json * raised memory threshold for parse-raw tpb --------- Co-authored-by: content-bot <55035720+content-bot@users.noreply.github.com> Co-authored-by: johnnywilkes <32227961+johnnywilkes@users.noreply.github.com> Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com> Co-authored-by: Adi Daud <46249224+adi88d@users.noreply.github.com> Co-authored-by: adi88d <adaud@paloaltonetworks.com> Co-authored-by: ilaner <88267954+ilaner@users.noreply.github.com> Co-authored-by: munna-metron <82433049+munna-metron@users.noreply.github.com> Co-authored-by: michal-dagan <109464765+michal-dagan@users.noreply.github.com> Co-authored-by: samuelFain <65926551+samuelFain@users.noreply.github.com> Co-authored-by: Koby Meir <kobymeir@users.noreply.github.com> Co-authored-by: Daniel Pascual <danielvazquez@google.com> Co-authored-by: yasta5 <112320333+yasta5@users.noreply.github.com> Co-authored-by: dorschw <81086590+dorschw@users.noreply.github.com> Co-authored-by: Moshe Galitzky <112559840+moishce@users.noreply.github.com> Co-authored-by: Sasha Sokolovich <88268646+ssokolovich@users.noreply.github.com> Co-authored-by: MLainer1 <93524335+MLainer1@users.noreply.github.com> Co-authored-by: Content Bot <bot@demisto.com>
maimorag
pushed a commit
that referenced
this pull request
Dec 28, 2023
* Add Xpanse Scope for XDR Integration (#31539) * update xpanse mp and docker * RN * Update Packs/CortexXDR/ReleaseNotes/6_0_11.md Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com> --------- Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com> * Update CortexXDRIR.yml * Update Packs/CortexXDR/Integrations/CortexXDRIR/CortexXDRIR.yml Co-authored-by: johnnywilkes <32227961+johnnywilkes@users.noreply.github.com> * Update CortexXDRIR.yml --------- Co-authored-by: johnnywilkes <32227961+johnnywilkes@users.noreply.github.com> Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com> Co-authored-by: Adi Daud <46249224+adi88d@users.noreply.github.com> Co-authored-by: adi88d <adaud@paloaltonetworks.com>
maimorag
pushed a commit
that referenced
this pull request
Dec 28, 2023
* update integration * update readme * rm test conf * added eof newline * Add Xpanse Scope for XDR Integration (#31582) * Add Xpanse Scope for XDR Integration (#31539) * update xpanse mp and docker * RN * Update Packs/CortexXDR/ReleaseNotes/6_0_11.md Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com> --------- Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com> * Update CortexXDRIR.yml * Update Packs/CortexXDR/Integrations/CortexXDRIR/CortexXDRIR.yml Co-authored-by: johnnywilkes <32227961+johnnywilkes@users.noreply.github.com> * Update CortexXDRIR.yml --------- Co-authored-by: johnnywilkes <32227961+johnnywilkes@users.noreply.github.com> Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com> Co-authored-by: Adi Daud <46249224+adi88d@users.noreply.github.com> Co-authored-by: adi88d <adaud@paloaltonetworks.com> * [pre-commit] fix script runner (#31592) * SentinelOneV2 (#31687) * SentinelOneV2 (#31595) * removing the empty fields from a payload of remote-script * bumped version * updated release notes * Update Packs/SentinelOne/ReleaseNotes/3_2_15.md Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com> --------- Co-authored-by: munna-metron <82433049+munna-metron@users.noreply.github.com> Co-authored-by: Adi Daud <46249224+adi88d@users.noreply.github.com> Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com> * Updated file variable revert test variable (#30846) Updated file variable revert test variable * [Whois] test_socks_proxy UT failed (#31395) * Init test.py/sh to run in unittests-and-lint * add location commands to bash script * Remove running script with python3 * Restructure imports * Restructure imports * Show hidden files and permissions in test script * Temporarily comment out test.py script in CI * remove test.py script * remove commented out python test script * disable darwin service startup in bash script * Add execution permissions and update darwin command * Fix microsocks_darwin path * Add microsocks executable and enable netstat * Re-enable whois integration tests * Add tempfile, time and subprocess imports * Add sys import * Update Tests/scripts/test.sh * Update Tests/scripts/test.sh * Empty commit * Update test.sh with whois commands * Fix echo command * script fix * Add dig command * Empty commit * Empty commit * Empty commit * Empty commit * [VirusTotal] Fix missing suspicious value for running instances (#31684) * Fix missing suspicious value for running instances (#31648) * Update docker * Update docker * Update pack_metadata.json * Update pack_metadata.json --------- Co-authored-by: Daniel Pascual <danielvazquez@google.com> Co-authored-by: Adi Daud <46249224+adi88d@users.noreply.github.com> * un-skip test_socks_proxy UT * revert to origin * un-skip test_socks_proxy UT * Remove unnecessary files * Add necessary imports --------- Co-authored-by: Koby Meir <kobymeir@users.noreply.github.com> Co-authored-by: content-bot <55035720+content-bot@users.noreply.github.com> Co-authored-by: Daniel Pascual <danielvazquez@google.com> Co-authored-by: Adi Daud <46249224+adi88d@users.noreply.github.com> * delete test data files from repo (#31658) * NetskopeAPIv2 `alert_query` argument (#31690) * ParseEmailFiles: Update docker (#31683) * update docker * update rn * update rn * revert * update version * Adding Cloud Alerts Layout (#31118) * Change the field to be searchable * RN * Added missing scripts * Added new layout rule Added new layout updated scripts * UPDATED SCRIPT * Fixed more pre-commit errors * Updated RN Fixed issue with the widget * Removed un-required script * Removed un-required script * Removed un-required script * Removed un-required script * Added tests * Added a test for main * Added a test for main * Added a test for main * Added a test for main * Updated main test * Updated main test * Updated main test * Updated main test * removed main tests * removed main tests * fixed tests * added MP * added MP * Updated README.md * Updated README.md * removed unrequited import * pre-commit * Updated RN description * Bump pack from version CloudIncidentResponse to 1.0.10. * alert source * Added missing scripts * Added new layout rule Added new layout updated scripts * UPDATED SCRIPT * Fixed more pre-commit errors * Removed un-required script * Removed un-required script * Removed un-required script * Removed un-required script * Added tests * Added a test for main * Added a test for main * Added a test for main * Added a test for main * Updated main test * Updated main test * Updated main test * Updated main test * removed main tests * removed main tests * fixed tests * added MP * added MP * Updated README.md * Updated README.md * removed unrequited import * pre-commit * Updated RN description * alert source * Bump pack from version CloudIncidentResponse to 1.0.10. * [SanePdfReport] - Increase resourceTimeout (#31513) * added random.randint * pre-commit * added a retry * added a retry2 * added a retry3 * flake8 * fixed * test * Reverted to master --------- Co-authored-by: MLainer1 <93524335+MLainer1@users.noreply.github.com> Co-authored-by: Content Bot <bot@demisto.com> Co-authored-by: michal-dagan <109464765+michal-dagan@users.noreply.github.com> * fixed output typo * rm closing parenthesis * updated cmd sections to cmd names * rm closing bracket from arg description * changed default for kv collection to auto-generated * update rn * Update pack_metadata.json * raised memory threshold for parse-raw tpb --------- Co-authored-by: content-bot <55035720+content-bot@users.noreply.github.com> Co-authored-by: johnnywilkes <32227961+johnnywilkes@users.noreply.github.com> Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com> Co-authored-by: Adi Daud <46249224+adi88d@users.noreply.github.com> Co-authored-by: adi88d <adaud@paloaltonetworks.com> Co-authored-by: ilaner <88267954+ilaner@users.noreply.github.com> Co-authored-by: munna-metron <82433049+munna-metron@users.noreply.github.com> Co-authored-by: michal-dagan <109464765+michal-dagan@users.noreply.github.com> Co-authored-by: samuelFain <65926551+samuelFain@users.noreply.github.com> Co-authored-by: Koby Meir <kobymeir@users.noreply.github.com> Co-authored-by: Daniel Pascual <danielvazquez@google.com> Co-authored-by: yasta5 <112320333+yasta5@users.noreply.github.com> Co-authored-by: dorschw <81086590+dorschw@users.noreply.github.com> Co-authored-by: Moshe Galitzky <112559840+moishce@users.noreply.github.com> Co-authored-by: Sasha Sokolovich <88268646+ssokolovich@users.noreply.github.com> Co-authored-by: MLainer1 <93524335+MLainer1@users.noreply.github.com> Co-authored-by: Content Bot <bot@demisto.com>
maimorag
pushed a commit
that referenced
this pull request
Dec 31, 2023
* Add Xpanse Scope for XDR Integration (#31539) * update xpanse mp and docker * RN * Update Packs/CortexXDR/ReleaseNotes/6_0_11.md Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com> --------- Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com> * Update CortexXDRIR.yml * Update Packs/CortexXDR/Integrations/CortexXDRIR/CortexXDRIR.yml Co-authored-by: johnnywilkes <32227961+johnnywilkes@users.noreply.github.com> * Update CortexXDRIR.yml --------- Co-authored-by: johnnywilkes <32227961+johnnywilkes@users.noreply.github.com> Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com> Co-authored-by: Adi Daud <46249224+adi88d@users.noreply.github.com> Co-authored-by: adi88d <adaud@paloaltonetworks.com>
maimorag
pushed a commit
that referenced
this pull request
Dec 31, 2023
* update integration * update readme * rm test conf * added eof newline * Add Xpanse Scope for XDR Integration (#31582) * Add Xpanse Scope for XDR Integration (#31539) * update xpanse mp and docker * RN * Update Packs/CortexXDR/ReleaseNotes/6_0_11.md Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com> --------- Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com> * Update CortexXDRIR.yml * Update Packs/CortexXDR/Integrations/CortexXDRIR/CortexXDRIR.yml Co-authored-by: johnnywilkes <32227961+johnnywilkes@users.noreply.github.com> * Update CortexXDRIR.yml --------- Co-authored-by: johnnywilkes <32227961+johnnywilkes@users.noreply.github.com> Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com> Co-authored-by: Adi Daud <46249224+adi88d@users.noreply.github.com> Co-authored-by: adi88d <adaud@paloaltonetworks.com> * [pre-commit] fix script runner (#31592) * SentinelOneV2 (#31687) * SentinelOneV2 (#31595) * removing the empty fields from a payload of remote-script * bumped version * updated release notes * Update Packs/SentinelOne/ReleaseNotes/3_2_15.md Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com> --------- Co-authored-by: munna-metron <82433049+munna-metron@users.noreply.github.com> Co-authored-by: Adi Daud <46249224+adi88d@users.noreply.github.com> Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com> * Updated file variable revert test variable (#30846) Updated file variable revert test variable * [Whois] test_socks_proxy UT failed (#31395) * Init test.py/sh to run in unittests-and-lint * add location commands to bash script * Remove running script with python3 * Restructure imports * Restructure imports * Show hidden files and permissions in test script * Temporarily comment out test.py script in CI * remove test.py script * remove commented out python test script * disable darwin service startup in bash script * Add execution permissions and update darwin command * Fix microsocks_darwin path * Add microsocks executable and enable netstat * Re-enable whois integration tests * Add tempfile, time and subprocess imports * Add sys import * Update Tests/scripts/test.sh * Update Tests/scripts/test.sh * Empty commit * Update test.sh with whois commands * Fix echo command * script fix * Add dig command * Empty commit * Empty commit * Empty commit * Empty commit * [VirusTotal] Fix missing suspicious value for running instances (#31684) * Fix missing suspicious value for running instances (#31648) * Update docker * Update docker * Update pack_metadata.json * Update pack_metadata.json --------- Co-authored-by: Daniel Pascual <danielvazquez@google.com> Co-authored-by: Adi Daud <46249224+adi88d@users.noreply.github.com> * un-skip test_socks_proxy UT * revert to origin * un-skip test_socks_proxy UT * Remove unnecessary files * Add necessary imports --------- Co-authored-by: Koby Meir <kobymeir@users.noreply.github.com> Co-authored-by: content-bot <55035720+content-bot@users.noreply.github.com> Co-authored-by: Daniel Pascual <danielvazquez@google.com> Co-authored-by: Adi Daud <46249224+adi88d@users.noreply.github.com> * delete test data files from repo (#31658) * NetskopeAPIv2 `alert_query` argument (#31690) * ParseEmailFiles: Update docker (#31683) * update docker * update rn * update rn * revert * update version * Adding Cloud Alerts Layout (#31118) * Change the field to be searchable * RN * Added missing scripts * Added new layout rule Added new layout updated scripts * UPDATED SCRIPT * Fixed more pre-commit errors * Updated RN Fixed issue with the widget * Removed un-required script * Removed un-required script * Removed un-required script * Removed un-required script * Added tests * Added a test for main * Added a test for main * Added a test for main * Added a test for main * Updated main test * Updated main test * Updated main test * Updated main test * removed main tests * removed main tests * fixed tests * added MP * added MP * Updated README.md * Updated README.md * removed unrequited import * pre-commit * Updated RN description * Bump pack from version CloudIncidentResponse to 1.0.10. * alert source * Added missing scripts * Added new layout rule Added new layout updated scripts * UPDATED SCRIPT * Fixed more pre-commit errors * Removed un-required script * Removed un-required script * Removed un-required script * Removed un-required script * Added tests * Added a test for main * Added a test for main * Added a test for main * Added a test for main * Updated main test * Updated main test * Updated main test * Updated main test * removed main tests * removed main tests * fixed tests * added MP * added MP * Updated README.md * Updated README.md * removed unrequited import * pre-commit * Updated RN description * alert source * Bump pack from version CloudIncidentResponse to 1.0.10. * [SanePdfReport] - Increase resourceTimeout (#31513) * added random.randint * pre-commit * added a retry * added a retry2 * added a retry3 * flake8 * fixed * test * Reverted to master --------- Co-authored-by: MLainer1 <93524335+MLainer1@users.noreply.github.com> Co-authored-by: Content Bot <bot@demisto.com> Co-authored-by: michal-dagan <109464765+michal-dagan@users.noreply.github.com> * fixed output typo * rm closing parenthesis * updated cmd sections to cmd names * rm closing bracket from arg description * changed default for kv collection to auto-generated * update rn * Update pack_metadata.json * raised memory threshold for parse-raw tpb --------- Co-authored-by: content-bot <55035720+content-bot@users.noreply.github.com> Co-authored-by: johnnywilkes <32227961+johnnywilkes@users.noreply.github.com> Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com> Co-authored-by: Adi Daud <46249224+adi88d@users.noreply.github.com> Co-authored-by: adi88d <adaud@paloaltonetworks.com> Co-authored-by: ilaner <88267954+ilaner@users.noreply.github.com> Co-authored-by: munna-metron <82433049+munna-metron@users.noreply.github.com> Co-authored-by: michal-dagan <109464765+michal-dagan@users.noreply.github.com> Co-authored-by: samuelFain <65926551+samuelFain@users.noreply.github.com> Co-authored-by: Koby Meir <kobymeir@users.noreply.github.com> Co-authored-by: Daniel Pascual <danielvazquez@google.com> Co-authored-by: yasta5 <112320333+yasta5@users.noreply.github.com> Co-authored-by: dorschw <81086590+dorschw@users.noreply.github.com> Co-authored-by: Moshe Galitzky <112559840+moishce@users.noreply.github.com> Co-authored-by: Sasha Sokolovich <88268646+ssokolovich@users.noreply.github.com> Co-authored-by: MLainer1 <93524335+MLainer1@users.noreply.github.com> Co-authored-by: Content Bot <bot@demisto.com>
maimorag
pushed a commit
that referenced
this pull request
Dec 31, 2023
* update integration * update readme * rm test conf * added eof newline * Add Xpanse Scope for XDR Integration (#31582) * Add Xpanse Scope for XDR Integration (#31539) * update xpanse mp and docker * RN * Update Packs/CortexXDR/ReleaseNotes/6_0_11.md Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com> --------- Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com> * Update CortexXDRIR.yml * Update Packs/CortexXDR/Integrations/CortexXDRIR/CortexXDRIR.yml Co-authored-by: johnnywilkes <32227961+johnnywilkes@users.noreply.github.com> * Update CortexXDRIR.yml --------- Co-authored-by: johnnywilkes <32227961+johnnywilkes@users.noreply.github.com> Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com> Co-authored-by: Adi Daud <46249224+adi88d@users.noreply.github.com> Co-authored-by: adi88d <adaud@paloaltonetworks.com> * [pre-commit] fix script runner (#31592) * SentinelOneV2 (#31687) * SentinelOneV2 (#31595) * removing the empty fields from a payload of remote-script * bumped version * updated release notes * Update Packs/SentinelOne/ReleaseNotes/3_2_15.md Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com> --------- Co-authored-by: munna-metron <82433049+munna-metron@users.noreply.github.com> Co-authored-by: Adi Daud <46249224+adi88d@users.noreply.github.com> Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com> * Updated file variable revert test variable (#30846) Updated file variable revert test variable * [Whois] test_socks_proxy UT failed (#31395) * Init test.py/sh to run in unittests-and-lint * add location commands to bash script * Remove running script with python3 * Restructure imports * Restructure imports * Show hidden files and permissions in test script * Temporarily comment out test.py script in CI * remove test.py script * remove commented out python test script * disable darwin service startup in bash script * Add execution permissions and update darwin command * Fix microsocks_darwin path * Add microsocks executable and enable netstat * Re-enable whois integration tests * Add tempfile, time and subprocess imports * Add sys import * Update Tests/scripts/test.sh * Update Tests/scripts/test.sh * Empty commit * Update test.sh with whois commands * Fix echo command * script fix * Add dig command * Empty commit * Empty commit * Empty commit * Empty commit * [VirusTotal] Fix missing suspicious value for running instances (#31684) * Fix missing suspicious value for running instances (#31648) * Update docker * Update docker * Update pack_metadata.json * Update pack_metadata.json --------- Co-authored-by: Daniel Pascual <danielvazquez@google.com> Co-authored-by: Adi Daud <46249224+adi88d@users.noreply.github.com> * un-skip test_socks_proxy UT * revert to origin * un-skip test_socks_proxy UT * Remove unnecessary files * Add necessary imports --------- Co-authored-by: Koby Meir <kobymeir@users.noreply.github.com> Co-authored-by: content-bot <55035720+content-bot@users.noreply.github.com> Co-authored-by: Daniel Pascual <danielvazquez@google.com> Co-authored-by: Adi Daud <46249224+adi88d@users.noreply.github.com> * delete test data files from repo (#31658) * NetskopeAPIv2 `alert_query` argument (#31690) * ParseEmailFiles: Update docker (#31683) * update docker * update rn * update rn * revert * update version * Adding Cloud Alerts Layout (#31118) * Change the field to be searchable * RN * Added missing scripts * Added new layout rule Added new layout updated scripts * UPDATED SCRIPT * Fixed more pre-commit errors * Updated RN Fixed issue with the widget * Removed un-required script * Removed un-required script * Removed un-required script * Removed un-required script * Added tests * Added a test for main * Added a test for main * Added a test for main * Added a test for main * Updated main test * Updated main test * Updated main test * Updated main test * removed main tests * removed main tests * fixed tests * added MP * added MP * Updated README.md * Updated README.md * removed unrequited import * pre-commit * Updated RN description * Bump pack from version CloudIncidentResponse to 1.0.10. * alert source * Added missing scripts * Added new layout rule Added new layout updated scripts * UPDATED SCRIPT * Fixed more pre-commit errors * Removed un-required script * Removed un-required script * Removed un-required script * Removed un-required script * Added tests * Added a test for main * Added a test for main * Added a test for main * Added a test for main * Updated main test * Updated main test * Updated main test * Updated main test * removed main tests * removed main tests * fixed tests * added MP * added MP * Updated README.md * Updated README.md * removed unrequited import * pre-commit * Updated RN description * alert source * Bump pack from version CloudIncidentResponse to 1.0.10. * [SanePdfReport] - Increase resourceTimeout (#31513) * added random.randint * pre-commit * added a retry * added a retry2 * added a retry3 * flake8 * fixed * test * Reverted to master --------- Co-authored-by: MLainer1 <93524335+MLainer1@users.noreply.github.com> Co-authored-by: Content Bot <bot@demisto.com> Co-authored-by: michal-dagan <109464765+michal-dagan@users.noreply.github.com> * fixed output typo * rm closing parenthesis * updated cmd sections to cmd names * rm closing bracket from arg description * changed default for kv collection to auto-generated * update rn * Update pack_metadata.json * raised memory threshold for parse-raw tpb --------- Co-authored-by: content-bot <55035720+content-bot@users.noreply.github.com> Co-authored-by: johnnywilkes <32227961+johnnywilkes@users.noreply.github.com> Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com> Co-authored-by: Adi Daud <46249224+adi88d@users.noreply.github.com> Co-authored-by: adi88d <adaud@paloaltonetworks.com> Co-authored-by: ilaner <88267954+ilaner@users.noreply.github.com> Co-authored-by: munna-metron <82433049+munna-metron@users.noreply.github.com> Co-authored-by: michal-dagan <109464765+michal-dagan@users.noreply.github.com> Co-authored-by: samuelFain <65926551+samuelFain@users.noreply.github.com> Co-authored-by: Koby Meir <kobymeir@users.noreply.github.com> Co-authored-by: Daniel Pascual <danielvazquez@google.com> Co-authored-by: yasta5 <112320333+yasta5@users.noreply.github.com> Co-authored-by: dorschw <81086590+dorschw@users.noreply.github.com> Co-authored-by: Moshe Galitzky <112559840+moishce@users.noreply.github.com> Co-authored-by: Sasha Sokolovich <88268646+ssokolovich@users.noreply.github.com> Co-authored-by: MLainer1 <93524335+MLainer1@users.noreply.github.com> Co-authored-by: Content Bot <bot@demisto.com>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Original External PR
external pull request
Contributor
@johnnywilkes
Contributing to Cortex XSOAR Content
Make sure to register your contribution by filling the contribution registration form
The Pull Request will be reviewed only after the contribution registration form is filled.
Status
Related Issues
https://jira-dc.paloaltonetworks.com/browse/EXPANDR-3361
https://jira-dc.paloaltonetworks.com/browse/CIAC-8959
Description
Disabling fetch for XDR Integration for Xpanse tenants only
Must have