Common Widgets

Details
Content
Version History

Frequently used widgets pack.

PUBLISHER

Cortex XSOAR

INFO

Certification	Certified	Read more
Supported By	Cortex XSOAR
Created	June 30, 2020
Last Release	May 6, 2021

DISCLAIMER

Content packs are licensed by the Publisher identified above and subject to the Publisher’s own licensing terms. Palo Alto Networks is not liable for and does not warrant or support any content pack produced by a third-party Publisher, whether or not such packs are designated as “Palo Alto Networks-certified” or otherwise. For more information, see the Marketplace documentation.

Automations

Name	Description
GetLargestInputsAndOuputsInIncidents	Returns inputs and outputs larger than 1 MB from all Cortex XSOAR investigations.
GetLargestInvestigations	Returns all investigations larger than 1 MB from all Cortex XSOAR.

Widgets

Name	Description
Active Incidents Assigned by User
Active Incidents by Role
Active Incidents - Line chart
Active Incidents - Pie chart
Average Incident Duration by Role (Avg)
Server CPU Usage % (last 24h)
CPU Current Usage
Closed Incidents by Role
Detection SLA by Status
Disk Current Usage
Elastic CPU Current Usage
Elastic Disk Current Usage
Elastic JVM Memory Current Usage
Busy Workers Count per Engine
Busy Workers per Engine (last 24h)
CPU Usage % per Engine
CPU Usage % per Engine (last 24h)
Disk Usage % per Engine
Disk Usage % per Engine (last 24h)
Memory Usage % per Engine
Memory Usage % per Engine (last 24h)
Workers per Engine
Image
Incidents By Close Reason
Incidents in Error Run Status
Incidents Occurred Per Day
Incident Severity by Type
Incident Types by Severity
Incidents by Phase
Incidents by Role
Closed By Dbot
Incidents Dropped in Preprocessing
Incidents Top Close Analysts
Indicators Activity
Indicators Activity by Type
Bad Indicators Activity
Bad Indicators Activity by Type
Manual Reputation Indicators
Manual Reputation Indicators by User
Investigation Activity Timeline
Largest Inputs And Outputs In Incidents
Largest Incidents by Storage Size
Late Incidents
Late Incidents
Late Tasks by User
Late Tasks
Important Messages
Latest Messages
Mean Time to Detection
Server Memory Usage % (last 24h)
Memory Current Usage
Most Active Integrations
Most Active Investigations
Most Active Users
MTTD by Type
MTTR by Type
MTTR by Type (in minutes)
MTTR Occurred by Type
Mean Time to Resolution (Occurred)
My Messages
Mentions
My Tasks
Open Tasks Per User
Page Break Widget
Top Active Playbooks
Return On Investment (ROI)
Remediation SLA by Status
Running playbooks
SLA by Incident Type
Tasks By State
Text Widget
TopMaliciousRatioIndicators
Unassigned Active Incidents
Unassigned Closed Incidents
Unassigned Incidents
Unassigned Incidents
Unassigned Pending Incidents

1.0.8 - 348319 (May 6, 2021)

Widgets

Bad Indicators Activity by Type

Fixed an issue where incorrect results were shown due to malformed timezone calculations.

1.0.7 - 287286 (February 22, 2021)

Widgets

New: MTTR by Type (in minutes)

Shows changes in Mean Time to Resolution (in minutes), over time, while differentiating between incident types.

MTTR by Type

Metadata and documentation enhancements.

1.0.6 - 269882 (February 2, 2021)

Scripts

GetLargestInputsAndOuputsInIncidents

Fixed an issue where the script returned the task size in KB instead of MB.
Added the table_result argument to control whether the script outputs a textual or a JSON format.
Upgraded the Docker image to: demisto/python3:3.9.1.15759.

1.0.5 - R264879 (January 27, 2021)

Scripts

GetLargestInputsAndOuputsInIncidents

Fixed an issue where the wrong automation was called.

1.0.4 - 141717 (October 11, 2020)

Scripts

GetLargestInputsAndOuputsInIncidents

Removed the MB suffix from the values of the Size column.
Changed the table header name Size to Size(MB).
Changed the table header IncidentID to a hyperlink to the incident.
Changed the table header TaskID to a hyperlink to the task.
Changed the default result format to Markdown.

GetLargestInvestigations

Removed the MB suffix from the values of the Size column.
Changed the table header name Size to Size(MB).
Changed the table header IncidentID to a hyperlink to the incident.
Changed the default result format to Markdown.
Added handling for Playground investigation.
Added the table_result argument, which returns a result in either Markdown or in a format suitable for a table widget. By default,
the result is in Markdown.

Widgets

Largest Incidents by Storage Size

Removed the MB suffix from the values of the Size column.
Changed the table header name Size to Size(MB).
Changed table header IncidentID to a hyperlink to the incident.

Largest Inputs And Outputs In Incidents

Removed the MB suffix from the values of the Size column.
Changed the table header name Size to Size(MB).
Changed the table header IncidentID to a hyperlink to the incident.
Changed the table header TaskID to a hyperlink to the task.

1.0.3 - 134930 (October 5, 2020)

Scripts

GetLargestInvestigations

Fixed an issue where the results were not sorted properly.

1.0.2 - 133771 (October 4, 2020)

Scripts

GetLargestInvestigations

Fixed an issue where the script would fail if no investigations were found.
Upgraded the Docker image to 3.8.5.11789

GetLargestInputsAndOuputsInIncidents

Fixed an issue where the script would fail if no inputs or outputs were found.
Upgraded the Docker image to 3.8.5.11789

Widgets

Largest Investigations

Fixed an issue where the widget did not pull information from the correct script.

Largest Inputs And Outputs In Incidents

Documentation and metadata improvements.

1.0.1 - R124496 (September 23, 2020)

Scripts

GetLargestInputsAndOuputsInIncidents

Use the script to get information about the largest inputs and outputs in the largest incidents.

GetLargestInvestigations

Use the script to get information about the largest incidents.

Widgets

Largest Inputs And Ouputs In Incidents

Use the widget to get information about the largest inputs and outputs in the largest incidents.

Largest Investigations

Use the widget to get information about the largest incidents.

1.0.0 - 60526 (June 30, 2020)

Frequently used widgets pack.

Common Widgets 1.0.8 356353

PUBLISHER

INFO

DISCLAIMER

Widgets

Bad Indicators Activity by Type

Widgets

New: MTTR by Type (in minutes)

MTTR by Type

Scripts

GetLargestInputsAndOuputsInIncidents

Scripts

GetLargestInputsAndOuputsInIncidents

Scripts

GetLargestInputsAndOuputsInIncidents

GetLargestInvestigations

Widgets

Largest Incidents by Storage Size

Largest Inputs And Outputs In Incidents

Scripts

GetLargestInvestigations

Scripts

GetLargestInvestigations

GetLargestInputsAndOuputsInIncidents

Widgets

Largest Investigations

Largest Inputs And Outputs In Incidents

Scripts

GetLargestInputsAndOuputsInIncidents

GetLargestInvestigations

Widgets

Largest Inputs And Ouputs In Incidents

Largest Investigations