A script that creates a table of all the ToDo tasks assigned to the current user.
Common Widgets
- Details
- Content
- Dependencies
- Version History
- Download With Dependencies
Frequently used widgets pack.
PUBLISHER
Cortex XSOAR
INFO
| Certification | Certified | Read more |
| Supported By | Cortex XSOAR | |
| Created | June 30, 2020 | |
| Last Release | March 30, 2022 |
DISCLAIMER
Content packs are licensed by the Publisher identified above and subject to the Publisher’s own licensing terms. Palo Alto Networks is not liable for and does not warrant or support any content pack produced by a third-party Publisher, whether or not such packs are designated as “Palo Alto Networks-certified” or otherwise. For more information, see the Marketplace documentation.Automations
| Name | Description |
|---|---|
MyToDoTasksWidget | |
GetLargestInvestigations | Deprecated. Use System Diagonstics page instead (available from version 6.2.0). Returns all investigations larger than 1 MB from all Cortex XSOAR. |
FeedIntegrationErrorWidget | Returns a table widget of enabled feed integration instances that errors out on indicators fetch. |
| RSSWidget | Script Widget - RSS Feed. |
GetLargestInputsAndOuputsInIncidents | Deprecated. Use System Diagonstics page instead (available from version 6.2.0). Returns inputs and outputs larger than 1 MB from all Cortex XSOAR investigations. |
Widgets
| Name | Description |
|---|---|
MTTD by Type | |
Average runtime by Incident Type per Playbook (top 5) | |
CPU Usage % per Engine (last 24h) | |
Average Incident Duration by Role (Avg) | |
Elastic JVM Memory Current Usage | |
Command execution errors | |
Relationship Generating Integrations | |
Executions by status per Automated Tasks (top 5) | |
MTTR by Type (in minutes) | |
My ToDo Tasks | |
Mean Time to Resolution (Occurred) | |
Late Tasks | |
Closed By Dbot | |
Server Memory Usage % (last 24h) | |
Active Indicators by Verdict | |
Indicators Activity | |
Mentions | |
Active vs Expired Indicators | |
Mean Time to Detection | |
Indicators in Related Incidents | |
Disk Usage % per Engine | |
Failed Automation executions per Incident Types (top 5) | |
Top Users Closed Manual Tasks | |
Elastic CPU Current Usage | |
Task execution errors | |
Top 10 Attack Pattern Indicators in Related Incidents | |
Detection SLA by Status | |
Top 10 File Indicators in Related Incidents | |
Return On Investment (ROI) | |
Incidents Dropped in Preprocessing | |
TopMaliciousRatioIndicators | |
Incidents By Close Reason | |
Memory Current Usage | |
Commands executed | |
Command execution errors per Integration Category | |
Feed Integrations Errors | |
Incidents Occurred Per Day | |
Tasks By State | |
Open Tasks Per User | |
Active Incidents Assigned by User | |
Task executions | |
Investigation Activity Timeline | |
CPU Current Usage | |
Running playbooks | |
Average runtime for Playbooks | |
Unassigned Incidents | |
Unassigned Closed Incidents | |
Most Active Users | |
Memory Usage % per Engine (last 24h) | |
Incidents Top Close Analysts | |
Indicators Activity by Type | |
Incidents in Error Run Status | |
Active Incidents - Line chart | |
Average runtime by Instance per Command (top 5) | |
Malicious Indicators Activity by Type | |
Incidents by Phase | |
Latest Messages | |
Command execution errors per Instance | |
My Messages | |
Page Break Widget | |
Least executed Commands | |
Memory Usage % per Engine | |
Malicious Indicators Activity | |
Most Active Integrations | |
Incident Severity by Type | |
Manual Verdict Indicators | |
Late Tasks by User | |
Top Active Playbooks | |
Command average runtime per Instance (top 5) | |
My Tasks | |
Busy Workers Count per Engine | |
Manual Verdict Indicators by User | |
Average runtime per Automation (top 5) | |
Manual Command execution errors (top 5) | |
Text Widget | |
Server CPU Usage % (last 24h) | |
Image | |
Unassigned Pending Incidents | |
Top executed Commands | |
Late Incidents | |
Unassigned Incidents | |
Largest Incidents by Storage Size | |
Failed Playbooks runs | |
Average runtime per Playbook (top 5) | |
Command executions per Integration Category | |
Remediation SLA by Status | |
Failed Manual Tasks | |
Active Incidents by Role | |
Important Messages | |
CPU Usage % per Engine | |
Active Incidents - Pie chart | |
Unassigned Active Incidents | |
Malicious/Suspicious Indicators in Incidents | |
SLA by Incident Type | |
Errors by Incident Type per Command (top 5) | |
Closed Incidents by Role | |
MTTR Occurred by Type | |
Unit 42 Blog Feed | |
Most Active Investigations | |
Largest Inputs And Outputs In Incidents | |
MTTR by Type | |
Command executions per Incident Type | |
Command execution type | |
Playbook runs | |
Incidents by Role | |
Least executed Commands per Instance | |
Incident Types by Severity | |
Command executions errors | |
Disk Current Usage | |
Elastic Disk Current Usage | |
Disk Usage % per Engine (last 24h) | |
Playbook run errors | |
Workers per Engine | |
Late Incidents | |
Executions by status per Manual Tasks (top 5) | |
Feeds Errors | |
Busy Workers per Engine (last 24h) | |
Active Indicators Volumes by Feed |
Required Content Packs (3)
| Pack Name | Pack By |
|---|---|
| Base | By: Cortex XSOAR |
| CommonScripts | By: Cortex XSOAR |
| DemistoRESTAPI | By: Cortex XSOAR |
Optional Content Packs (0)
| Pack Name | Pack By |
|---|
1.2.6 - 2674843 (March 30, 2022)
Scripts
MyToDoTasksWidget
- Added type validations and other internal code improvements.
FeedIntegrationErrorWidget
- Added type validations and other internal code improvements.
1.2.5 - R2233034 (January 10, 2022)
Scripts
MyToDoTasksWidget
- Fixed an issue where the script failed to run if there were no To Do tasks assigned to the user.
1.2.4 - R2146019 (December 21, 2021)
Scripts
RSSWidget
- Fixed an issue where the RSS feed entries were in ascending order (they are now in descending order).
- Updated the Docker image to: demisto/feed-parser:1.0.0.25187.
1.2.3 - 2106314 (December 14, 2021)
Widgets
Unit 42 Blog Feed
- Documentation and metadata improvements.
1.2.2 - 2037725 (December 1, 2021)
Scripts
New: MyToDoTasksWidget
- A script that creates a table of all the ToDo tasks assigned to the current user. (Available from Cortex XSOAR 6.1.0).
Widgets
New: My ToDo Tasks
- A widget that presents a table of all the ToDo tasks assigned to the current user. (Available from Cortex XSOAR 6.1.0).
1.2.1 - 1941309 (November 12, 2021)
Widgets
New: Unit42 Blog Feed
- Available from Cortex XSOAR 6.2.0.
New: Active Indicators Volumes by Feed
- Available from Cortex XSOAR 6.2.0.
New: Top 10 File Indicators in Related Incidents
- Available from Cortex XSOAR 6.2.0.
New: Indicators in Related Incidents
- Available from Cortex XSOAR 6.2.0.
New: Relationship Generating Integrations
- Available from Cortex XSOAR 6.2.0.
New: Top 10 Attack Pattern Indicators in Related Incidents
- Available from Cortex XSOAR 6.2.0.
New: Malicious/Suspicious Indicators in Incidents
- Available from Cortex XSOAR 6.2.0.
New: Feeds Errors
- Available from Cortex XSOAR 6.2.0.
New: Active vs Expired Indicators
- Available from Cortex XSOAR 6.2.0.
New: Active Indicators by Verdict
- Available from Cortex XSOAR 6.2.0.
1.2.0 - 1926804 (November 10, 2021)
Widgets
Mentions
- Breaking Change The Mentions widget is not supported on version 6.2 or newer.
1.1.10 - 1882648 (November 2, 2021)
Scripts
GetLargestInputsAndOuputsInIncidents
- Added ignore_deprecated argument to allow running the script on 6.2.0+. WARNING: Setting this argument to true might result in CPU and RAM issues.
GetLargestInvestigations
- Added ignore_deprecated argument to allow running the script on 6.2.0+. WARNING: Setting this argument to true might result in CPU and RAM issues.
1.1.9 - 1828004 (October 21, 2021)
Scripts
FeedIntegrationErrorWidget
Improved the date format of Instance Last Modified Time.
1.1.8 - 1812291 (October 18, 2021)
Scripts
New: FeedIntegrationErrorWidget
Returns a table widget of enabled feed integration instances that errors out on indicators fetch. (Available from Cortex XSOAR 6.1.0).
Widgets
New: Feed Integrations Errors
(Available from Cortex XSOAR 6.1.0).
1.1.7 - 1790547 (October 13, 2021)
Scripts
RSSWidget
- Fixed an issue where HTML content would be presented with HTML tags.
1.1.6 - 1775750 (October 10, 2021)
Scripts
GetLargestInputsAndOuputsInIncidents
- The script has been deprecated. For XSOAR versions up to 6.2.0, it is not advised to use the script as it can cause performance issues. For XSOAR 6.2.0 and later versions, please refer to the System Diagnostic page as an alternative.
GetLargestInvestigations
- The script has been deprecated. For XSOAR versions up to 6.2.0, it is not advised to use the script as it can cause performance issues. For XSOAR 6.2.0 and later versions, please refer to the System Diagnostic page as an alternative.
1.1.5 - 7740378 (September 23, 2021)
Scripts
GetLargestInputsAndOuputsInIncidents
- Updated the Docker image to: demisto/python3:3.9.7.24076.
GetLargestInvestigations
- Updated the Docker image to: demisto/python3:3.9.7.24076.
Widgets
Command execution type
- - Fixed an issue where the widget tried to display values as percentages.
1.1.3 - 7459007 (September 5, 2021)
Scripts
RSSWidget
Added the limit argument.
1.1.2 - 415124 (August 23, 2021)
Scripts
New: RSSWidget
Script Widget - RSS Feed. (Available from Cortex XSOAR 5.5.0).
1.1.1 - 384775 (June 14, 2021)
Widgets
Malicious Indicators Activity by Type
- Fixed an issue where the time resolution value was missing.
1.1.0 - 380482 (June 8, 2021)
Widgets
New: Command executions per Integration Category
- Command executions per Integration Category (Available from Cortex XSOAR 6.2.0).
New: Executions by status per Manual Tasks (top 5)
- Executions by status per Manual Tasks (top 5) (Available from Cortex XSOAR 6.2.0).
New: Command execution errors per Integration Category
- Command execution errors per Integration Category (Available from Cortex XSOAR 6.2.0).
New: Command execution type
- Command execution type (Available from Cortex XSOAR 6.2.0).
New: Top executed Commands
- Top executed Commands (Available from Cortex XSOAR 6.2.0).
New: Average runtime per Automation (top 5)
- Average runtime per Automation (top 5) (Available from Cortex XSOAR 6.2.0).
New: Average runtime by Incident Type per Playbook (top 5)
- Average runtime by Incident Type per Playbook (top 5) (Available from Cortex XSOAR 6.2.0).
New: Command executions errors
- Command executions errors (Available from Cortex XSOAR 6.2.0).
New: Task execution errors
- Task execution errors (Available from Cortex XSOAR 6.2.0).
New: Least executed Commands per Instance
- Least executed Commands per Instance (Available from Cortex XSOAR 6.2.0).
New: Average runtime by Instance per Command (top 5)
- Average runtime by Instance per Command (top 5) (Available from Cortex XSOAR 6.2.0).
New: Command execution errors per Instance
- Command execution errors per Instance (Available from Cortex XSOAR 6.2.0).
New: Errors by Incident Type per Command (top 5)
- Errors by Incident Type per Command (top 5) (Available from Cortex XSOAR 6.2.0).
New: Playbook run errors
- Playbook run errors (Available from Cortex XSOAR 6.2.0).
New: Task executions
- Task executions (Available from Cortex XSOAR 6.2.0).
New: Playbook runs
- Playbook runs (Available from Cortex XSOAR 6.2.0).
New: Average runtime per Playbook (top 5)
- Average runtime per Playbook (top 5) (Available from Cortex XSOAR 6.2.0).
New: Command average runtime per Instance (top 5)
- Command average runtime per Instance (top 5) (Available from Cortex XSOAR 6.2.0).
New: Top Users Closed Manual Tasks
- Top Users Closed Manual Tasks (Available from Cortex XSOAR 6.2.0).
New: Failed Playbooks runs
- Failed Playbooks runs (Available from Cortex XSOAR 6.2.0).
New: Command executions per Incident Type
- Command executions per Incident Type (Available from Cortex XSOAR 6.2.0).
New: Least executed Commands
- Least executed Commands (Available from Cortex XSOAR 6.2.0).
New: Manual Command execution errors (top 5)
- Manual Command execution errors (top 5) (Available from Cortex XSOAR 6.2.0).
New: Executions by status per Automated Tasks (top 5)
- Executions by status per Automated Tasks (top 5) (Available from Cortex XSOAR 6.2.0).
New: Commands executed
- Commands executed (Available from Cortex XSOAR 6.2.0).
New: Failed Automation executions per Incident Types (top 5)
- Failed Automation executions per Incident Types (top 5) (Available from Cortex XSOAR 6.2.0).
New: Failed Manual Tasks
- Failed Manual Tasks (Available from Cortex XSOAR 6.2.0).
New: Average runtime for Playbooks
- Average runtime for Playbooks (Available from Cortex XSOAR 6.2.0).
New: Command execution errors
- Command execution errors (Available from Cortex XSOAR 6.2.0).
1.0.10 - 378296 (June 6, 2021)
Widgets
Malicious Indicators Activity by Type
- Change layout name from Bad Indicators Activity by Type to Malicious Indicators Activity by Type.
Manual Verdict Indicators by User
- Change layout name from Manual Reputation Indicators by User to Manual Verdict Indicators by User.
Malicious Indicators Activity
- Change layout name from Bad Indicators Activity to Malicious Indicators Activity.
Manual Verdict Indicators
- Change layout name from Manual Reputation Indicators to Manual Verdict Indicators.
1.0.9 - 369103 (May 27, 2021)
Widgets
Page Break Widget
- Updated the category to Utilities.
Image
- Updated the category to Utilities.
Text Widget
- Updated the category to Utilities.
1.0.8 - 348319 (May 6, 2021)
Widgets
Bad Indicators Activity by Type
Fixed an issue where incorrect results were shown due to malformed timezone calculations.
1.0.7 - 287286 (February 22, 2021)
Widgets
New: MTTR by Type (in minutes)
- Shows changes in Mean Time to Resolution (in minutes), over time, while differentiating between incident types.
MTTR by Type
- Metadata and documentation enhancements.
1.0.6 - 269882 (February 2, 2021)
Scripts
GetLargestInputsAndOuputsInIncidents
- Fixed an issue where the script returned the task size in KB instead of MB.
- Added the table_result argument to control whether the script outputs a textual or a JSON format.
- Upgraded the Docker image to: demisto/python3:3.9.1.15759.
1.0.5 - R264879 (January 27, 2021)
Scripts
GetLargestInputsAndOuputsInIncidents
- Fixed an issue where the wrong automation was called.
1.0.4 - 141717 (October 11, 2020)
Scripts
GetLargestInputsAndOuputsInIncidents
- Removed the MB suffix from the values of the Size column.
- Changed the table header name Size to Size(MB).
- Changed the table header IncidentID to a hyperlink to the incident.
- Changed the table header TaskID to a hyperlink to the task.
- Changed the default result format to Markdown.
GetLargestInvestigations
- Removed the MB suffix from the values of the Size column.
- Changed the table header name Size to Size(MB).
- Changed the table header IncidentID to a hyperlink to the incident.
- Changed the default result format to Markdown.
- Added handling for Playground investigation.
- Added the table_result argument, which returns a result in either Markdown or in a format suitable for a table widget. By default,
the result is in Markdown.
Widgets
Largest Incidents by Storage Size
- Removed the MB suffix from the values of the Size column.
- Changed the table header name Size to Size(MB).
- Changed table header IncidentID to a hyperlink to the incident.
Largest Inputs And Outputs In Incidents
- Removed the MB suffix from the values of the Size column.
- Changed the table header name Size to Size(MB).
- Changed the table header IncidentID to a hyperlink to the incident.
- Changed the table header TaskID to a hyperlink to the task.
1.0.3 - 134930 (October 5, 2020)
Scripts
GetLargestInvestigations
- Fixed an issue where the results were not sorted properly.
1.0.2 - 133771 (October 4, 2020)
Scripts
GetLargestInvestigations
- Fixed an issue where the script would fail if no investigations were found.
- Upgraded the Docker image to 3.8.5.11789
GetLargestInputsAndOuputsInIncidents
- Fixed an issue where the script would fail if no inputs or outputs were found.
- Upgraded the Docker image to 3.8.5.11789
Widgets
Largest Investigations
- Fixed an issue where the widget did not pull information from the correct script.
Largest Inputs And Outputs In Incidents
- Documentation and metadata improvements.
1.0.1 - R124496 (September 23, 2020)
Scripts
GetLargestInputsAndOuputsInIncidents
- Use the script to get information about the largest inputs and outputs in the largest incidents.
GetLargestInvestigations
- Use the script to get information about the largest incidents.
Widgets
Largest Inputs And Ouputs In Incidents
- Use the widget to get information about the largest inputs and outputs in the largest incidents.
Largest Investigations
- Use the widget to get information about the largest incidents.
1.0.0 - 60526 (June 30, 2020)
Frequently used widgets pack.