Script Widget - RSS Feed.
Common Widgets
- Details
- Content
- Version History
Frequently used widgets pack.
PUBLISHER
Cortex XSOAR
INFO
| Certification | Certified | Read more |
| Supported By | Cortex XSOAR | |
| Created | June 30, 2020 | |
| Last Release | October 21, 2021 |
DISCLAIMER
Content packs are licensed by the Publisher identified above and subject to the Publisher’s own licensing terms. Palo Alto Networks is not liable for and does not warrant or support any content pack produced by a third-party Publisher, whether or not such packs are designated as “Palo Alto Networks-certified” or otherwise. For more information, see the Marketplace documentation.Widgets
| Name | Description |
|---|---|
Failed Manual Tasks | |
Command executions per Integration Category | |
Incidents by Phase | |
Feed Integrations Errors | |
Active Incidents Assigned by User | |
Command average runtime per Instance (top 5) | |
Closed Incidents by Role | |
Task executions | |
Incidents by Role | |
Server Memory Usage % (last 24h) | |
Disk Current Usage | |
Average runtime by Incident Type per Playbook (top 5) | |
Latest Messages | |
Active Incidents - Pie chart | |
Late Incidents | |
Mentions | |
Executions by status per Manual Tasks (top 5) | |
Disk Usage % per Engine (last 24h) | |
SLA by Incident Type | |
Incident Severity by Type | |
Least executed Commands | |
Active Incidents - Line chart | |
Most Active Users | |
Largest Incidents by Storage Size | |
Average runtime per Playbook (top 5) | |
MTTR by Type | |
Indicators Activity by Type | |
Important Messages | |
Tasks By State | |
Top Active Playbooks | |
Remediation SLA by Status | |
Commands executed | |
Open Tasks Per User | |
Closed By Dbot | |
Playbook run errors | |
Average runtime for Playbooks | |
Command executions per Incident Type | |
Memory Current Usage | |
Failed Playbooks runs | |
Unassigned Incidents | |
MTTR Occurred by Type | |
Manual Verdict Indicators | |
Late Incidents | |
MTTD by Type | |
Workers per Engine | |
Least executed Commands per Instance | |
TopMaliciousRatioIndicators | |
Most Active Investigations | |
Busy Workers Count per Engine | |
Investigation Activity Timeline | |
Failed Automation executions per Incident Types (top 5) | |
Page Break Widget | |
Memory Usage % per Engine (last 24h) | |
Return On Investment (ROI) | |
Malicious Indicators Activity | |
Unassigned Pending Incidents | |
Text Widget | |
Server CPU Usage % (last 24h) | |
Largest Inputs And Outputs In Incidents | |
Average runtime per Automation (top 5) | |
Disk Usage % per Engine | |
Incidents Top Close Analysts | |
CPU Usage % per Engine (last 24h) | |
Elastic CPU Current Usage | |
Manual Verdict Indicators by User | |
Mean Time to Detection | |
Playbook runs | |
Command execution errors per Instance | |
CPU Usage % per Engine | |
My Tasks | |
Command execution errors per Integration Category | |
Mean Time to Resolution (Occurred) | |
Running playbooks | |
Top executed Commands | |
Average Incident Duration by Role (Avg) | |
Indicators Activity | |
Executions by status per Automated Tasks (top 5) | |
CPU Current Usage | |
Incidents in Error Run Status | |
Elastic JVM Memory Current Usage | |
Detection SLA by Status | |
Command execution type | |
Errors by Incident Type per Command (top 5) | |
Task execution errors | |
Incidents Dropped in Preprocessing | |
Late Tasks | |
Command execution errors | |
Elastic Disk Current Usage | |
Command executions errors | |
Incident Types by Severity | |
Incidents By Close Reason | |
Top Users Closed Manual Tasks | |
Malicious Indicators Activity by Type | |
Average runtime by Instance per Command (top 5) | |
Incidents Occurred Per Day | |
Most Active Integrations | |
Busy Workers per Engine (last 24h) | |
Manual Command execution errors (top 5) | |
Unassigned Active Incidents | |
Late Tasks by User | |
Memory Usage % per Engine | |
MTTR by Type (in minutes) | |
Unassigned Incidents | |
Unassigned Closed Incidents | |
My Messages | |
Active Incidents by Role | |
Image |
Automations
| Name | Description |
|---|---|
| RSSWidget | |
FeedIntegrationErrorWidget | Returns a table widget of enabled feed integration instances that errors out on indicators fetch. |
GetLargestInvestigations | Deprecated. Use System Diagonstics page instead (available from version 6.2.0). Returns all investigations larger than 1 MB from all Cortex XSOAR. |
GetLargestInputsAndOuputsInIncidents | Deprecated. Use System Diagonstics page instead (available from version 6.2.0). Returns inputs and outputs larger than 1 MB from all Cortex XSOAR investigations. |
1.1.9 - 1828004 (October 21, 2021)
Scripts
FeedIntegrationErrorWidget
Improved the date format of Instance Last Modified Time.
1.1.8 - 1812291 (October 18, 2021)
Scripts
New: FeedIntegrationErrorWidget
Returns a table widget of enabled feed integration instances that errors out on indicators fetch. (Available from Cortex XSOAR 6.1.0).
Widgets
New: Feed Integrations Errors
(Available from Cortex XSOAR 6.1.0).
1.1.7 - 1790547 (October 13, 2021)
Scripts
RSSWidget
- Fixed an issue where HTML content would be presented with HTML tags.
1.1.6 - 1775750 (October 10, 2021)
Scripts
GetLargestInputsAndOuputsInIncidents
- The script has been deprecated. For XSOAR versions up to 6.2.0, it is not advised to use the script as it can cause performance issues. For XSOAR 6.2.0 and later versions, please refer to the System Diagnostic page as an alternative.
GetLargestInvestigations
- The script has been deprecated. For XSOAR versions up to 6.2.0, it is not advised to use the script as it can cause performance issues. For XSOAR 6.2.0 and later versions, please refer to the System Diagnostic page as an alternative.
1.1.5 - 7740378 (September 23, 2021)
Scripts
GetLargestInputsAndOuputsInIncidents
- Updated the Docker image to: demisto/python3:3.9.7.24076.
GetLargestInvestigations
- Updated the Docker image to: demisto/python3:3.9.7.24076.
Widgets
Command execution type
- - Fixed an issue where the widget tried to display values as percentages.
1.1.3 - 7459007 (September 5, 2021)
Scripts
RSSWidget
Added the limit argument.
1.1.2 - 415124 (August 23, 2021)
Scripts
New: RSSWidget
Script Widget - RSS Feed. (Available from Cortex XSOAR 5.5.0).
1.1.1 - 384775 (June 14, 2021)
Widgets
Malicious Indicators Activity by Type
- Fixed an issue where the time resolution value was missing.
1.1.0 - 380482 (June 8, 2021)
Widgets
New: Command executions per Integration Category
- Command executions per Integration Category (Available from Cortex XSOAR 6.2.0).
New: Executions by status per Manual Tasks (top 5)
- Executions by status per Manual Tasks (top 5) (Available from Cortex XSOAR 6.2.0).
New: Command execution errors per Integration Category
- Command execution errors per Integration Category (Available from Cortex XSOAR 6.2.0).
New: Command execution type
- Command execution type (Available from Cortex XSOAR 6.2.0).
New: Top executed Commands
- Top executed Commands (Available from Cortex XSOAR 6.2.0).
New: Average runtime per Automation (top 5)
- Average runtime per Automation (top 5) (Available from Cortex XSOAR 6.2.0).
New: Average runtime by Incident Type per Playbook (top 5)
- Average runtime by Incident Type per Playbook (top 5) (Available from Cortex XSOAR 6.2.0).
New: Command executions errors
- Command executions errors (Available from Cortex XSOAR 6.2.0).
New: Task execution errors
- Task execution errors (Available from Cortex XSOAR 6.2.0).
New: Least executed Commands per Instance
- Least executed Commands per Instance (Available from Cortex XSOAR 6.2.0).
New: Average runtime by Instance per Command (top 5)
- Average runtime by Instance per Command (top 5) (Available from Cortex XSOAR 6.2.0).
New: Command execution errors per Instance
- Command execution errors per Instance (Available from Cortex XSOAR 6.2.0).
New: Errors by Incident Type per Command (top 5)
- Errors by Incident Type per Command (top 5) (Available from Cortex XSOAR 6.2.0).
New: Playbook run errors
- Playbook run errors (Available from Cortex XSOAR 6.2.0).
New: Task executions
- Task executions (Available from Cortex XSOAR 6.2.0).
New: Playbook runs
- Playbook runs (Available from Cortex XSOAR 6.2.0).
New: Average runtime per Playbook (top 5)
- Average runtime per Playbook (top 5) (Available from Cortex XSOAR 6.2.0).
New: Command average runtime per Instance (top 5)
- Command average runtime per Instance (top 5) (Available from Cortex XSOAR 6.2.0).
New: Top Users Closed Manual Tasks
- Top Users Closed Manual Tasks (Available from Cortex XSOAR 6.2.0).
New: Failed Playbooks runs
- Failed Playbooks runs (Available from Cortex XSOAR 6.2.0).
New: Command executions per Incident Type
- Command executions per Incident Type (Available from Cortex XSOAR 6.2.0).
New: Least executed Commands
- Least executed Commands (Available from Cortex XSOAR 6.2.0).
New: Manual Command execution errors (top 5)
- Manual Command execution errors (top 5) (Available from Cortex XSOAR 6.2.0).
New: Executions by status per Automated Tasks (top 5)
- Executions by status per Automated Tasks (top 5) (Available from Cortex XSOAR 6.2.0).
New: Commands executed
- Commands executed (Available from Cortex XSOAR 6.2.0).
New: Failed Automation executions per Incident Types (top 5)
- Failed Automation executions per Incident Types (top 5) (Available from Cortex XSOAR 6.2.0).
New: Failed Manual Tasks
- Failed Manual Tasks (Available from Cortex XSOAR 6.2.0).
New: Average runtime for Playbooks
- Average runtime for Playbooks (Available from Cortex XSOAR 6.2.0).
New: Command execution errors
- Command execution errors (Available from Cortex XSOAR 6.2.0).
1.0.10 - 378296 (June 6, 2021)
Widgets
Malicious Indicators Activity by Type
- Change layout name from Bad Indicators Activity by Type to Malicious Indicators Activity by Type.
Manual Verdict Indicators by User
- Change layout name from Manual Reputation Indicators by User to Manual Verdict Indicators by User.
Malicious Indicators Activity
- Change layout name from Bad Indicators Activity to Malicious Indicators Activity.
Manual Verdict Indicators
- Change layout name from Manual Reputation Indicators to Manual Verdict Indicators.
1.0.9 - 369103 (May 27, 2021)
Widgets
Page Break Widget
- Updated the category to Utilities.
Image
- Updated the category to Utilities.
Text Widget
- Updated the category to Utilities.
1.0.8 - 348319 (May 6, 2021)
Widgets
Bad Indicators Activity by Type
Fixed an issue where incorrect results were shown due to malformed timezone calculations.
1.0.7 - 287286 (February 22, 2021)
Widgets
New: MTTR by Type (in minutes)
- Shows changes in Mean Time to Resolution (in minutes), over time, while differentiating between incident types.
MTTR by Type
- Metadata and documentation enhancements.
1.0.6 - 269882 (February 2, 2021)
Scripts
GetLargestInputsAndOuputsInIncidents
- Fixed an issue where the script returned the task size in KB instead of MB.
- Added the table_result argument to control whether the script outputs a textual or a JSON format.
- Upgraded the Docker image to: demisto/python3:3.9.1.15759.
1.0.5 - R264879 (January 27, 2021)
Scripts
GetLargestInputsAndOuputsInIncidents
- Fixed an issue where the wrong automation was called.
1.0.4 - 141717 (October 11, 2020)
Scripts
GetLargestInputsAndOuputsInIncidents
- Removed the MB suffix from the values of the Size column.
- Changed the table header name Size to Size(MB).
- Changed the table header IncidentID to a hyperlink to the incident.
- Changed the table header TaskID to a hyperlink to the task.
- Changed the default result format to Markdown.
GetLargestInvestigations
- Removed the MB suffix from the values of the Size column.
- Changed the table header name Size to Size(MB).
- Changed the table header IncidentID to a hyperlink to the incident.
- Changed the default result format to Markdown.
- Added handling for Playground investigation.
- Added the table_result argument, which returns a result in either Markdown or in a format suitable for a table widget. By default,
the result is in Markdown.
Widgets
Largest Incidents by Storage Size
- Removed the MB suffix from the values of the Size column.
- Changed the table header name Size to Size(MB).
- Changed table header IncidentID to a hyperlink to the incident.
Largest Inputs And Outputs In Incidents
- Removed the MB suffix from the values of the Size column.
- Changed the table header name Size to Size(MB).
- Changed the table header IncidentID to a hyperlink to the incident.
- Changed the table header TaskID to a hyperlink to the task.
1.0.3 - 134930 (October 5, 2020)
Scripts
GetLargestInvestigations
- Fixed an issue where the results were not sorted properly.
1.0.2 - 133771 (October 4, 2020)
Scripts
GetLargestInvestigations
- Fixed an issue where the script would fail if no investigations were found.
- Upgraded the Docker image to 3.8.5.11789
GetLargestInputsAndOuputsInIncidents
- Fixed an issue where the script would fail if no inputs or outputs were found.
- Upgraded the Docker image to 3.8.5.11789
Widgets
Largest Investigations
- Fixed an issue where the widget did not pull information from the correct script.
Largest Inputs And Outputs In Incidents
- Documentation and metadata improvements.
1.0.1 - R124496 (September 23, 2020)
Scripts
GetLargestInputsAndOuputsInIncidents
- Use the script to get information about the largest inputs and outputs in the largest incidents.
GetLargestInvestigations
- Use the script to get information about the largest incidents.
Widgets
Largest Inputs And Ouputs In Incidents
- Use the widget to get information about the largest inputs and outputs in the largest incidents.
Largest Investigations
- Use the widget to get information about the largest incidents.
1.0.0 - 60526 (June 30, 2020)
Frequently used widgets pack.