Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Update ewsv2 exc2019 (demisto#26670)
* update * test * changes * changes * final commands changes * clean code * update TPBs * rvert name change * revert name change * cr changes * fix name * fix TPBs * remove skip of perm_set field * fix tpb and validations * revert arg removal * remove added tpb * update memory threshold * fix ut * fix ut * Fix urllib.parse import in CommonServerPython (#27252) * Allow applying a new profile over an existing one in ***pan-os-apply-security-profile*** command (#27237) * Add XSOAR support for updating existing profile types * RN * fix UT * Update Packs/PAN-OS/ReleaseNotes/1_17_5.md Co-authored-by: Guy Afik <[email protected]> * fix CR * RN * UT was added * Update Packs/PAN-OS/Integrations/Panorama/Panorama.py Co-authored-by: Guy Afik <[email protected]> * Update Packs/PAN-OS/Integrations/Panorama/Panorama.py Co-authored-by: Guy Afik <[email protected]> * Update Packs/PAN-OS/Integrations/Panorama/Panorama.py Co-authored-by: Guy Afik <[email protected]> * Update Packs/PAN-OS/Integrations/Panorama/Panorama.py Co-authored-by: Guy Afik <[email protected]> * Update Packs/PAN-OS/Integrations/Panorama/Panorama.py Co-authored-by: Guy Afik <[email protected]> * fix * flake8 * UT stability --------- Co-authored-by: Guy Afik <[email protected]> * Update Docker Image To demisto/splunksdk-py3 (#27263) * Updated Metadata Of Pack SplunkPy * Added release notes to pack SplunkPy * Packs/SplunkPy/Integrations/SplunkPy/SplunkPy.yml Docker image update * Updated domain extraction playbook - changing .zip to a valid TLD (#27264) * Updated domain extraction playbook * some formatting. * Update playbook-Domain_extraction_test.yml * Update playbook-Domain_extraction_test.yml * Update Docker Image To demisto/duoadmin3 (#27268) * Updated Metadata Of Pack DuoAdminApi * Added release notes to pack DuoAdminApi * Packs/DuoAdminApi/Integrations/DuoEventCollector/DuoEventCollector.yml Docker image update * Packs/DuoAdminApi/Integrations/DuoAdminApi/DuoAdminApi.yml Docker image update * Update Docker Image To demisto/googleapi-python3 (#27267) * Updated Metadata Of Pack GoogleDrive * Added release notes to pack GoogleDrive * Packs/GoogleDrive/Integrations/GoogleDrive/GoogleDrive.yml Docker image update * Update Docker Image To demisto/python3 (#27266) * Updated Metadata Of Pack Darktrace * Added release notes to pack Darktrace * Packs/Darktrace/Integrations/DarktraceMBs/DarktraceMBs.yml Docker image update * Packs/Darktrace/Integrations/DarktraceAIA/DarktraceAIA.yml Docker image update * Updated Metadata Of Pack CybleEvents * Added release notes to pack CybleEvents * Packs/CybleEvents/Integrations/CybleEvents/CybleEvents.yml Docker image update * Updated Metadata Of Pack Censys * Added release notes to pack Censys * Packs/Censys/Integrations/CensysV2/CensysV2.yml Docker image update * Updated Metadata Of Pack VirusTotal * Added release notes to pack VirusTotal * Packs/VirusTotal/Integrations/FeedLivehunt/FeedLivehunt.yml Docker image update * Packs/VirusTotal/Integrations/FeedRetrohunt/FeedRetrohunt.yml Docker image update * Updated Metadata Of Pack CofenseIntelligenceV2 * Added release notes to pack CofenseIntelligenceV2 * Packs/CofenseIntelligenceV2/Integrations/CofenseIntelligenceV2/CofenseIntelligenceV2.yml Docker image update * Updated Metadata Of Pack CheckPointDome9 * Added release notes to pack CheckPointDome9 * Packs/CheckPointDome9/Integrations/CheckPointDome9/CheckPointDome9.yml Docker image update * Updated Metadata Of Pack Reco * Added release notes to pack Reco * Packs/Reco/Integrations/Reco/Reco.yml Docker image update * Updated Metadata Of Pack CimTrak-SystemIntegrityAssurance * Added release notes to pack CimTrak-SystemIntegrityAssurance * Packs/CimTrak-SystemIntegrityAssurance/Integrations/CimTrak/CimTrak.yml Docker image update * Update Docker Image To demisto/python3 (#27272) * Updated Metadata Of Pack FeedProofpoint * Added release notes to pack FeedProofpoint * Packs/FeedProofpoint/Integrations/FeedProofpoint/FeedProofpoint.yml Docker image update * Updated Metadata Of Pack FortiSIEM * Added release notes to pack FortiSIEM * Packs/FortiSIEM/Integrations/FortiSIEM/FortiSIEM.yml Docker image update * Updated Metadata Of Pack Ipstack * Added release notes to pack Ipstack * Packs/Ipstack/Integrations/Ipstack/Ipstack.yml Docker image update * Updated Metadata Of Pack SafeBreach * Added release notes to pack SafeBreach * Packs/SafeBreach/Integrations/SafeBreach_v2/SafeBreach_v2.yml Docker image update * Updated Metadata Of Pack RedCanary * Added release notes to pack RedCanary * Packs/RedCanary/Integrations/RedCanary/RedCanary.yml Docker image update * Updated Metadata Of Pack PiHole * Added release notes to pack PiHole * Packs/PiHole/Integrations/PiHole/PiHole.yml Docker image update * Updated Metadata Of Pack FeedDShield * Added release notes to pack FeedDShield * Packs/FeedDShield/Integrations/FeedDShield/FeedDShield.yml Docker image update * Updated Metadata Of Pack SafeNet_Trusted_Access * Added release notes to pack SafeNet_Trusted_Access * Packs/SafeNet_Trusted_Access/Integrations/SafeNetTrustedAccess/SafeNetTrustedAccess.yml Docker image update * Updated Metadata Of Pack OpenPhish * Added release notes to pack OpenPhish * Packs/OpenPhish/Integrations/OpenPhish_v2/OpenPhish_v2.yml Docker image update * Updated Metadata Of Pack NistNVD * Added release notes to pack NistNVD * Packs/NistNVD/Integrations/NistNVD/NistNVD.yml Docker image update * Updated Metadata Of Pack Cognni * Added release notes to pack Cognni * Packs/Cognni/Integrations/Cognni/Cognni.yml Docker image update * Updated Metadata Of Pack PANOSPolicyOptimizer * Added release notes to pack PANOSPolicyOptimizer * Packs/PANOSPolicyOptimizer/Integrations/PANOSPolicyOptimizer/PANOSPolicyOptimizer.yml Docker image update * Updated Metadata Of Pack DeveloperTools * Added release notes to pack DeveloperTools * Packs/DeveloperTools/Integrations/CreateIncidents/CreateIncidents.yml Docker image update * Packs/DeveloperTools/Integrations/CustomIndicatorDemo/CustomIndicatorDemo.yml Docker image update * Packs/DeveloperTools/Integrations/APIMetricsValidation/APIMetricsValidation.yml Docker image update * Updated Metadata Of Pack NozomiNetworks * Added release notes to pack NozomiNetworks * Packs/NozomiNetworks/Integrations/NozomiNetworks/NozomiNetworks.yml Docker image update * Updated Metadata Of Pack ANYRUN * Added release notes to pack ANYRUN * Packs/ANYRUN/Integrations/ANYRUN/ANYRUN.yml Docker image update * Updated Metadata Of Pack Carbon_Black_Enterprise_Response * Added release notes to pack Carbon_Black_Enterprise_Response * Packs/Carbon_Black_Enterprise_Response/Integrations/CarbonBlackResponseV2/CarbonBlackResponseV2.yml Docker image update * Updated Metadata Of Pack Absolute * Added release notes to pack Absolute * Packs/Absolute/Integrations/Absolute/Absolute.yml Docker image update * Updated Metadata Of Pack Ironscales * Added release notes to pack Ironscales * Packs/Ironscales/Integrations/Ironscales/Ironscales.yml Docker image update * Updated Metadata Of Pack FeedURLhaus * Added release notes to pack FeedURLhaus * Packs/FeedURLhaus/Integrations/FeedURLhaus/FeedURLhaus.yml Docker image update * Updated Metadata Of Pack Lokpath_Keylight * Added release notes to pack Lokpath_Keylight * Packs/Lokpath_Keylight/Integrations/Lockpath_KeyLight_v2/Lockpath_KeyLight_v2.yml Docker image update * Updated Metadata Of Pack FeedMISP * Added release notes to pack FeedMISP * Packs/FeedMISP/Integrations/FeedMISP/FeedMISP.yml Docker image update * Updated Metadata Of Pack FraudWatch * Added release notes to pack FraudWatch * Packs/FraudWatch/Integrations/FraudWatch/FraudWatch.yml Docker image update * Updated Metadata Of Pack AbnormalSecurity * Added release notes to pack AbnormalSecurity * Packs/AbnormalSecurity/Integrations/AbnormalSecurityEventCollector/AbnormalSecurityEventCollector.yml Docker image update * Updated Metadata Of Pack CovalenceManagedSecurity * Added release notes to pack CovalenceManagedSecurity * Packs/CovalenceManagedSecurity/Integrations/CovalenceManagedSecurity/CovalenceManagedSecurity.yml Docker image update * Updated Metadata Of Pack IllusiveNetworks * Added release notes to pack IllusiveNetworks * Packs/IllusiveNetworks/Integrations/IllusiveNetworks/IllusiveNetworks.yml Docker image update * Updated Metadata Of Pack Edgescan * Added release notes to pack Edgescan * Packs/Edgescan/Integrations/Edgescan/Edgescan.yml Docker image update * Updated Metadata Of Pack PerceptionPoint * Added release notes to pack PerceptionPoint * Packs/PerceptionPoint/Integrations/PerceptionPoint/PerceptionPoint.yml Docker image update * Updated Metadata Of Pack Druva * Added release notes to pack Druva * Packs/Druva/Integrations/Druva/Druva.yml Docker image update * Updated Metadata Of Pack APIVoid * Added release notes to pack APIVoid * Packs/APIVoid/Integrations/APIVoid/APIVoid.yml Docker image update * Updated Metadata Of Pack PingIdentity * Added release notes to pack PingIdentity * Packs/PingIdentity/Integrations/PingOne/PingOne.yml Docker image update * Updated Metadata Of Pack cisco-ise * Added release notes to pack cisco-ise * Packs/cisco-ise/Integrations/cisco-ise/cisco-ise.yml Docker image update * Updated Metadata Of Pack SailPointIdentityIQ * Added release notes to pack SailPointIdentityIQ * Packs/SailPointIdentityIQ/Integrations/SailPointIdentityIQ/SailPointIdentityIQ.yml Docker image update * Updated Metadata Of Pack Cymulate * Added release notes to pack Cymulate * Packs/Cymulate/Integrations/Cymulate/Cymulate.yml Docker image update * Packs/Cymulate/Integrations/Cymulate_v2/Cymulate_v2.yml Docker image update * Updated Metadata Of Pack XSOARmirroring * Added release notes to pack XSOARmirroring * Packs/XSOARmirroring/Integrations/XSOARmirroring/XSOARmirroring.yml Docker image update * Updated Metadata Of Pack XMatters * Added release notes to pack XMatters * Packs/XMatters/Integrations/xMatters/xMatters.yml Docker image update * Updated Metadata Of Pack Zimperium * Added release notes to pack Zimperium * Packs/Zimperium/Integrations/Zimperium/Zimperium.yml Docker image update * Updated Metadata Of Pack RSANetWitnessEndpoint * Added release notes to pack RSANetWitnessEndpoint * Packs/RSANetWitnessEndpoint/Integrations/RSANetWitnessEndpoint/RSANetWitnessEndpoint.yml Docker image update * Updated Metadata Of Pack SymantecBlueCoatMalwareAnalysis * Added release notes to pack SymantecBlueCoatMalwareAnalysis * Packs/SymantecBlueCoatMalwareAnalysis/Integrations/SymantecBlueCoatMalwareAnalysis/SymantecBlueCoatMalwareAnalysis.yml Docker image update * Updated Metadata Of Pack InfoArmor_VigilanteATI * Added release notes to pack InfoArmor_VigilanteATI * Packs/InfoArmor_VigilanteATI/Integrations/InfoArmorVigilanteATI/InfoArmorVigilanteATI.yml Docker image update * Updated Metadata Of Pack AccentureCTI * Added release notes to pack AccentureCTI * Packs/AccentureCTI/Integrations/ACTIVulnerabilityQuery/ACTIVulnerabilityQuery.yml Docker image update * Updated Metadata Of Pack PingCastle * Added release notes to pack PingCastle * Packs/PingCastle/Integrations/PingCastle/PingCastle.yml Docker image update * Updated Metadata Of Pack MaxMind_GeoIP2 * Added release notes to pack MaxMind_GeoIP2 * Packs/MaxMind_GeoIP2/Integrations/MaxMind_GeoIP2/MaxMind_GeoIP2.yml Docker image update * Updated Metadata Of Pack Maltiverse * Added release notes to pack Maltiverse * Packs/Maltiverse/Integrations/Maltiverse/Maltiverse.yml Docker image update * Updated Metadata Of Pack CarbonBlackDefense * Added release notes to pack CarbonBlackDefense * Packs/CarbonBlackDefense/Integrations/CarbonBlackEndpointStandard/CarbonBlackEndpointStandard.yml Docker image update * Updated Metadata Of Pack AlienVault_USM_Anywhere * Added release notes to pack AlienVault_USM_Anywhere * Packs/AlienVault_USM_Anywhere/Integrations/AlienVault_USM_Anywhere/AlienVault_USM_Anywhere.yml Docker image update * Updated Metadata Of Pack ProofpointServerProtection * Added release notes to pack ProofpointServerProtection * Packs/ProofpointServerProtection/Integrations/ProofpointProtectionServerV2/ProofpointProtectionServerV2.yml Docker image update * Updated Metadata Of Pack OpsGenie * Added release notes to pack OpsGenie * Packs/OpsGenie/Integrations/OpsGenieV3/OpsGenieV3.yml Docker image update * Fixed lint and validate --------- Co-authored-by: sberman <[email protected]> * Ignore modeling/parsing rules suffix error (#27274) * [EDL] Fixed a typo in the description (#27269) * Fixed a typo in the description * Update the docker image * Macos Regex Fix (#27270) * Updated ModelingRules * Updated ReleaseNotes * Updated ReleaseNotes * Updated ModelingRules * Updated ModelingRules * Cs falcon add tags to cs-falcon-upload-custom-ioc command (#27234) * CS Flacon add tags to upload-custom-ioc command * added RNs * Align credentials stores part 11 (#27253) * Align credentials part 11 * Trend Micro Apex * ignore * adding tests to hostlo * Trend Micro Apex tests * trend more test * change test * Syslogv2 was removed from xsiam marketplace (#27278) * remove Syslogv2 from xsiam marketplace * RN * known_words * Update Packs/Syslog/ReleaseNotes/2_0_16.md Co-authored-by: dorschw <[email protected]> * DO --------- Co-authored-by: dorschw <[email protected]> * Microsoft Graph Single User - Edit documentation (#27275) * edit documentation * edit documentation * RN and DO * fix doc * mistake * ExtraHop release v2.1.0 (#27056) (#27279) * Update .devcontainer.json name * added changes related to ExtrHop 2.1.0 release --------- Co-authored-by: Crest Data Systems <[email protected]> Co-authored-by: crestdatasystems <[email protected]> * Recordedfuture listapi v1.0.0 (#26996) (#27281) * First version/implementation of new List Integration * Added new List integration * Updated validation step requirements and fixed tests to be working as expected * Updated test Coverage * Version bump and fixed frombersion for list app * Added custom content, incident type and classifier for coderepo leakage * Updated some documentation and fixed dockerimages * Bumped version of playbook alert app * Fixed changelog for 1.6.0 to not include an old change * fixed type0 in changelog * removed base64 import * Updated release notes * Update based on review * Removed references to old playbook alerts documentation from creation of integration --------- Co-authored-by: recordedfuture-simonhornestedt <109588368+recordedfuture-simonhornestedt@users.noreply.github.com> Co-authored-by: michal-dagan <[email protected]> * fix bug by convert the password to bytes (#27283) * fix bug by convert the password to bytes * commit * update RN and Docker * comment corrections * commit * [greynoise-266] - Add greynoise-similar and greynoise-timeline commands (#27067) (#27291) * add sim and timeline updates * fix test file prints * update readme fix tests * updates to readme for pre-commit * updates from pre-commit run * more linting updates * update secrets * fix url in timeline Co-authored-by: Brad Chiappetta <[email protected]> * [ASM] - Expandr 4075 (#27258) (#27287) * init * RN * fix RN * Apply suggestions from code review --------- Co-authored-by: johnnywilkes <[email protected]> Co-authored-by: ShirleyDenkberg <[email protected]> * [Panorama] Tags Management (#27044) * panorama tag commands * release notes * release notes * tpb * fix tpb * fix * add kew_words and update description * fix device-group * revert non-relevat change * bump version * - Added device group location to the tags result - Added list request when editing tags to get the properties that are not given in arguments * Update Packs/PAN-OS/Integrations/Panorama/Panorama.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/PAN-OS/Integrations/Panorama/Panorama.yml Co-authored-by: ShirleyDenkberg <[email protected]> * docs fixes * fix UT * pre-commit fix * bump version * pre-commit * CR fix --------- Co-authored-by: ShirleyDenkberg <[email protected]> * Xdrir fix polling timeout (#27238) * XDRIR fix polling timeout parameter * Added RNs * Update Docker Image To demisto/bottle (#27303) * Updated Metadata Of Pack WebFileRepository * Added release notes to pack WebFileRepository * Packs/WebFileRepository/Integrations/WebFileRepository/WebFileRepository.yml Docker image update * Update Docker Image To demisto/python3 (#27302) * Updated Metadata Of Pack DelineaSS * Added release notes to pack DelineaSS * Packs/DelineaSS/Integrations/DelineaSS/DelineaSS.yml Docker image update * Updated Metadata Of Pack Lumu * Added release notes to pack Lumu * Packs/Lumu/Integrations/Lumu/Lumu.yml Docker image update * Updated Metadata Of Pack FlashpointFeed * Added release notes to pack FlashpointFeed * Packs/FlashpointFeed/Integrations/FlashpointFeed/FlashpointFeed.yml Docker image update * Updated Metadata Of Pack FeedLOLBAS * Added release notes to pack FeedLOLBAS * Packs/FeedLOLBAS/Integrations/FeedLOLBAS/FeedLOLBAS.yml Docker image update * Updated Metadata Of Pack Grafana * Added release notes to pack Grafana * Packs/Grafana/Integrations/Grafana/Grafana.yml Docker image update * Updated Metadata Of Pack FireMonSecurityManager * Added release notes to pack FireMonSecurityManager * Packs/FireMonSecurityManager/Integrations/FireMonSecurityManager/FireMonSecurityManager.yml Docker image update * Updated Metadata Of Pack Gatewatcher-AionIQ * Added release notes to pack Gatewatcher-AionIQ * Packs/Gatewatcher-AionIQ/Integrations/GCenter/GCenter.yml Docker image update * Updated Metadata Of Pack McAfeeNSM * Added release notes to pack McAfeeNSM * Packs/McAfeeNSM/Integrations/McAfeeNSMv2/McAfeeNSMv2.yml Docker image update * Updated Metadata Of Pack DeHashed * Added release notes to pack DeHashed * Packs/DeHashed/Integrations/DeHashed/DeHashed.yml Docker image update * Updated Metadata Of Pack IronscalesEventCollector * Added release notes to pack IronscalesEventCollector * Packs/IronscalesEventCollector/Integrations/IronscalesEventCollector/IronscalesEventCollector.yml Docker image update * Update Docker Image To demisto/sixgill (#27304) * Updated Metadata Of Pack Sixgill-Darkfeed * Added release notes to pack Sixgill-Darkfeed * Packs/Sixgill-Darkfeed/Integrations/Sixgill_Darkfeed_Enrichment/Sixgill_Darkfeed_Enrichment.yml Docker image update * Packs/Sixgill-Darkfeed/Integrations/Sixgill_Darkfeed/Sixgill_Darkfeed.yml Docker image update * Update Docker Image To demisto/slackv3 (#27301) * Updated Metadata Of Pack Slack * Added release notes to pack Slack * Packs/Slack/Integrations/SlackV3/SlackV3.yml Docker image update * MOVEit Transfer pack enhancement (#27225) * Majorbreach pack RN update and minor fix to the playbook description * Majorbreach pack RN update and minor fix to the playbook description * fix RN * updates * updates * updates the pack readme * Service now auto closing incidents when using the Mirrored XSOAR Ticket custom close state code parameter (#27288) * Fixed issue where incidents would auto close after using the Mirrored XSOAR Ticket custom close state code parameter * Added RN * Fixed RN and added documentation in code * Fixed documentation in code * Creating modeling and parsing rules for Cisco ISR (#27239) * Creating modeling and parsing rules for Cisco ISR * Change readme * Change readme * Added ipv6 mapping to modeling rules * fixed const for ip protocol * unified user regex to 1 statement * modified readme file * Modified release notes. * Add zdl ti fusion pack (#26981) (#27286) * Add ZeroDayLiveTIFusion Pack * Formatting updates * Remove .lock, set default repotation value * Remove th pipefile * Rename Pack to contain feed - adhere to PA conventions * Reuse existing CSV API module * Metadata updates - post review * Update descriptions Co-authored-by: grzegorzpapkala <[email protected]> * [MSGraphDeviceMgmt] fix bool parsing (#27296) * ObserveIT Severity Update (#27282) * Updated ModelingRules * Updated ReleaseNotes * Updated ReleaseNotes * Updated ModelingRules * Update Docker Image To demisto/python3 (#27300) * Updated Metadata Of Pack AutoFocus * Added release notes to pack AutoFocus * Packs/AutoFocus/Integrations/FeedAutofocus/FeedAutofocus.yml Docker image update * Packs/AutoFocus/Integrations/AutofocusV2/AutofocusV2.yml Docker image update * Updated Metadata Of Pack CrowdStrikeFalconX * Added release notes to pack CrowdStrikeFalconX * Packs/CrowdStrikeFalconX/Integrations/CrowdStrikeFalconX/CrowdStrikeFalconX.yml Docker image update * Updated Metadata Of Pack CVESearch * Added release notes to pack CVESearch * Packs/CVESearch/Integrations/CVESearchV2/CVESearchV2.yml Docker image update * Updated Metadata Of Pack Slack * Added release notes to pack Slack * Packs/Slack/Scripts/SlackAskV2/SlackAskV2.yml Docker image update * Bump pack from version Slack to 3.1.39. --------- Co-authored-by: Content Bot <[email protected]> * Qradar/fix/deprecated playbook (#27198) * replaced depracted playbook * updated RN * changed more TPB * updated RN * Pass the comment to fetch-credential command. (#27305) * Pass the comment to fetch-credential command. (#27249) * Pass the comment to fetch-credential command. Added auto comment feature to delinea-secret-password-get command. * Updated docker image version * change docker image version * Adhere to RN XSOAR known tempaltes. * Updated the unit test case --------- Co-authored-by: Danny_Fried <[email protected]> * Bump version. --------- Co-authored-by: Suhasini <[email protected]> Co-authored-by: Danny_Fried <[email protected]> * LOLBAS - Added "Plug & Fetch" tag (#27309) * added needed tags to pack * Added lolbas to "Free Feeds" pack * Remove CommonServerUser Scripts from `NonSupported` Pack (#27311) * Remove common-server-user scripts * Delete READMEs (moved to content-docs) * Sysaid delete-file, get, add-note, record-attach-file (#27285) * Orca Integration: Remove video from the description (#27259) (#27314) * Use orca score as source for the demisto score Update output for the commands * Upgrade docker version. --------- Co-authored-by: Viktor Poltorak <[email protected]> Co-authored-by: Danny_Fried <[email protected]> * SimpleSFTP upload-file command added. (#27315) * SimpleSFTP upload-file command added. (#27208) * SimpleSFTP upload-file command added. * Removing print * Updated Readme. Added ReleaseNotes and unified arguments to snake case instead of camel case * Fixed name in integration YAML. * Fixing linting errors. * Update docker image. Include docker image in RN. --------- Co-authored-by: Fahad Yousuf <[email protected]> Co-authored-by: Danny_Fried <[email protected]> * WildFire Fix condition to exclude encoded pdf files (#27105) * Fix condition to exclude encoded pdf files * Update release notes * Update missing playbook image * Fix playbook logic to exclude base64 encoded * Update release notes and playbook image * Update playbook-Detonate_File_-_WildFire.yml Fix review comments * Update playbook image and description * Update playbook readme * Update Docker Image To demisto/boto3py3 (#27335) * Updated Metadata Of Pack AWS-GuardDuty * Added release notes to pack AWS-GuardDuty * Packs/AWS-GuardDuty/Integrations/AWSGuardDutyEventCollector/AWSGuardDutyEventCollector.yml Docker image update * Packs/AWS-GuardDuty/Integrations/AWSGuardDuty/AWSGuardDuty.yml Docker image update * Update Docker Image To demisto/py42 (#27336) * Updated Metadata Of Pack Code42 * Added release notes to pack Code42 * Packs/Code42/Integrations/Code42/Code42.yml Docker image update * Update incidentfield-Darktrace_Model_Breach_CommentCount.json (#27103) * Update incidentfield-Darktrace_Model_Breach_CommentCount.json * Update pack_metadata.json * Create 2_0_6.md * Update 2_0_6.md * Update 2_0_6.md * RN * RN * RN * AWS Lambda enhancement 6 commands (#27095) * Added get policy command * change from AWS-Lambda to AWS_Lambda * Added UT for policy * Fix UT * Fix UT * del duplicate code * Added list-versions and url_config * update yml * added 3 commands * added 3 commands * update docker * lint MD * fix yml * update RN * improve * added readme and some improve * del copy * added docstring * fix line to long * test playbook and update docker * update fromVersion * Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml Co-authored-by: ShirleyDenkberg <[email protected]> * change List of strings to list * Apply suggestions from code review Co-authored-by: ShirleyDenkberg <[email protected]> * Apply suggestions from code review Co-authored-by: ShirleyDenkberg <[email protected]> * change md * autofix on * autofix * autofix * Apply automatic changes * Revert "autofix on" This reverts commit 1039a09e18c740fa906a53cc3a742e45fa560199. * Revert "autofix on" This reverts commit 1039a09e18c740fa906a53cc3a742e45fa560199. * undo pre-commit * update docker * fix demo * update yml * change file name * change file name to aws_lambda * update docker and UT * fix mypy * fix * undo fix * update docker and cr * added Principal * update docker --------- Co-authored-by: ShirleyDenkberg <[email protected]> Co-authored-by: shmuel44 <[email protected]> * [panOS] Add Security Rule does not take list as paramter (#27040) * Change source_user arg to list * Update yml file * Update yml changes to pan-os and panorama * Update release notes * Update 1_17_5.md * Rename 1_17_5.md to 1_17_6.md * Delete 1_17_6.md * Update RN * Add UT for PR changes * Update README.md * Update Packs/PAN-OS/ReleaseNotes/1_17_6.md Co-authored-by: Guy Afik <[email protected]> * Version bump * Update docker image * Update RN --------- Co-authored-by: Guy Afik <[email protected]> * custom user agent on builds (#27284) * custom user agent on builds * Cofense Triage Release 2.1.13 (#27265) (#27317) * Update .devcontainer.json name * Added cofense-report-attachment-payload-list command * Updated context example in report attachment payload list command * Updated docker images in all YML files * Updated release notes --------- Co-authored-by: Crest Data Systems <[email protected]> Co-authored-by: crestdatasystems <[email protected]> Co-authored-by: michal-dagan <[email protected]> * Associate "Action" indicator field to all indicator types (#27321) * Associate "Action" field to all types * RN * fix execution metrics in scripts (#27214) * Align credentials stores part 10 (#27221) * Align credentials stores part 10 * SumoLogic * Proofpoint Feed * required change * adding tests * add fetch logs to nightly build fetch integrations (#27124) * add fetch logs to nightly build fetch integrations * fix QRadar tests * update release notes and docker files * fix expansev2 * rn * fix logs * fix flask8 * added date field to skip incident log * resolve conflict * Bump pack from version QRadar to 2.4.22. --------- Co-authored-by: Content Bot <[email protected]> * add fetch log part2 (#27196) * cortexDataLake * update docker * GenericSQL logs * update rn * md-atp logs * update docker * adding time to skip incidents * update docker * AWS Feed - added support for IPv6 (#27141) * AWS Feed - added support for IPv6 * added tests * cr * tests an rn * validation * rn * cr * di * Bump sane-pdf-report docker image (#27318) * Bump sane-pdf-report docker image * Bump pack from version Base to 1.32.11. --------- Co-authored-by: Content Bot <[email protected]> * Fixed file name to be "indicatorfield" (#27342) * fixed file name * RN * RN * Update 3_3_74.md * Update setup poetry step in pre-commit (#27224) * update setup poetry * use pip * change Setup Poetry to use Gr1N * change Setup Poetry to use Gr1N in pre commit * adding root .editorconfig file. (#27280) https://editorconfig.org/ * fixing unbound local variable on search dependencies (#27327) * update readme file (#27356) * Core rest api add xsoar hosted (#27355) * bug fix * RN update --------- Co-authored-by: xsoar-bot <[email protected]> * Updated pb to use cve command (#27341) * MSGraphTeams fix path in the documentation (#27353) * fix docs * RN * Fix common server python mypy (#27351) * fixed a mypy issue * added rn * fix * Marketplace doc-howto (#27349) * Duo fields enhancement (#27308) * Enhancement for modeling rules. * added telephony modeling rule * modified modeling rule * modified shcema file. * Added release notes. * Added release notes. * updated pack metadata release notes. * Free enrichers tags - "Plug & Enrich" (#27320) * "Plug & Enrich" tags and FreeEnrichers pack * Added tags to approved list * Updated and corrected the readme. * Another small fix of a typo in readme * Reverted accidentally removing pack name * Better formatting * Added "Free Enricher" to all "Plug & Fetch" enrichers * ignore modeling/parsing rules suffix validate (#27373) * Fix RTIR issue (#27360) * fix type * Add UTs for changed add_reply function * add credential defaults, improve UT --------- Co-authored-by: samuelFain <[email protected]> * Added code for integration of events (#26519) (#27379) * Added code for integration of events * Code review Feedback * changes in fetch incident * PR Review change * PR Review change * changes in read me file * Changed read me file based on the review * Changes for playbook and intergration * changes in the read me file * PR changes * changes in image and docker image * change in services in alert * changes for alert * Changes in docker image * Changes for docker image * Update Packs/CybleThreatIntel/Integrations/CybleThreatIntel/CybleThreatIntel.yml * Update Packs/CybleEventsV2/Integrations/CybleEventsV2/CybleEventsV2.yml --------- Co-authored-by: cyble-dev <[email protected]> Co-authored-by: RotemAmit <[email protected]> * CSP - Added `Rank` class (new grid field) and `rank` to the Domain class (new grid field) (#27352) * Added rank to domain * RN * Update CommonServerPython.py * RN * Splunk py raise timezone exception (#27316) * SplunkPy - fix uninformative error message when missing timezone in mirroring * Added RNs * Updated readme * CR updates * Update Packs/SplunkPy/ReleaseNotes/3_0_20.md Co-authored-by: yuvalbenshalom <[email protected]> * Updated Docker Image --------- Co-authored-by: yuvalbenshalom <[email protected]> * qradar return error with traceback (#27229) * Zscaler ZIA enhancement: Add IP Destination group commands (#27386) * Zscaler ZIA enhancement: Add IP Destination group commands (#26447) * ZIA Enhancement: IP destination group commands * Included 3 new commands for Zscaler Integration as follows:: - Added zscaler-list-ip-destination-groups - Added zscaler-create-ip-destination-groups - Added zscaler-edit-ip-destination-groups --------- Co-authored-by: rootbid <[email protected]> * ZIA Enhancement: IP destination group commands * Included 2 new commands for Zscaler Integration as follows:: - Added zscaler-list-ip-destination-groups-lite - Added zscaler-delete-ip-destination-groups --------- Author: pallavi-garad <[email protected]> Co-authored-by: rootbid <[email protected]> * Minor updates and fixes * Update and add documentation links for Zscaler ZIA * Zscaler ZIA Enhancement - Update with requested changes * Update .devcontainer.json name * merge list-ip-destination-groups and lite command * fixed minor issues * update lite argument description --------- Co-authored-by: rootbid <[email protected]> * Update .devcontainer/devcontainer.json Co-authored-by: Dan Tavori <[email protected]> * Update as per review comments - Fix exceptions - Use CommandResults - Refactor zscaler-list-ip-destination-groups and zscaler-edit-ip-destination-group commands - Update release notes * Regenerate README after updating Zscaler.yml and unit test bug fixes * Resolve merge conflicts * Fix type annotations and update docker image * Update Packs/Zscaler/ReleaseNotes/1_3_10.md Co-authored-by: Dan Tavori <[email protected]> --------- Co-authored-by: Shambo Samanta <[email protected]> Co-authored-by: rootbid <[email protected]> Co-authored-by: pallavi-garad <[email protected]> Co-authored-by: Dan Tavori <[email protected]> * Apply suggestions from code review Co-authored-by: ShirleyDenkberg <[email protected]> --------- Co-authored-by: Deepansh <[email protected]> Co-authored-by: Shambo Samanta <[email protected]> Co-authored-by: rootbid <[email protected]> Co-authored-by: pallavi-garad <[email protected]> Co-authored-by: Dan Tavori <[email protected]> Co-authored-by: ShirleyDenkberg <[email protected]> * XSIAM | ForcepointSWG Pack (#26706) * XSIAM | ForcepointSWG Pack * Added pack files * Added pack-ignore and secrets-ignore * Apply suggestions from code review Co-authored-by: ShirleyDenkberg <[email protected]> * Apply suggestions from code review Co-authored-by: ShirleyDenkberg <[email protected]> * Updated ModelingRules --------- Co-authored-by: ShirleyDenkberg <[email protected]> Co-authored-by: evisochek <[email protected]> * AzureSentinel - keywords argument from 'comma separate' to 'str' in azure-sentinel-threat-indicator-query (#27380) * keywords argument from comma separate to str in azure-sentinel-threat -indicator-query command * RN * DO * Update Packs/AzureSentinel/Integrations/AzureSentinel/README.md Co-authored-by: dorschw <[email protected]> * Update Packs/AzureSentinel/Integrations/AzureSentinel/AzureSentinel.yml Co-authored-by: dorschw <[email protected]> * Update Packs/AzureSentinel/ReleaseNotes/1_5_8.md Co-authored-by: dorschw <[email protected]> * under sources * additional info for clarification * Update Packs/AzureSentinel/Integrations/AzureSentinel/README.md Co-authored-by: dorschw <[email protected]> * Update Packs/AzureSentinel/Integrations/AzureSentinel/AzureSentinel.yml Co-authored-by: dorschw <[email protected]> * Update Packs/AzureSentinel/Integrations/AzureSentinel/AzureSentinel.yml Co-authored-by: dorschw <[email protected]> * validate yml * validate yml * revert and Dor's solution * revert README * Update Packs/AzureSentinel/Integrations/AzureSentinel/AzureSentinel.py Co-authored-by: dorschw <[email protected]> * add instance name for the TPB --------- Co-authored-by: dorschw <[email protected]> * Update Docker Image To demisto/py3-tools (#27396) * Updated Metadata Of Pack MailListener * Added release notes to pack MailListener * Packs/MailListener/Integrations/MailListenerV2/MailListenerV2.yml Docker image update * Remove content items with toversion less than 6.5.0 (#27325) * remove playbooks * remove scripts * remove integrations * remove integrations * remove README * remove script/integration packs * fix UT * False * Align credentials stores part 5 (#27126) * Align credentials stores part 5 * adding IBM * RL * checking new docker image * update * docker to fix pre-commit * fix docker * update docker in rl * add test req * old docker * rl * docker --------- Co-authored-by: ilan <[email protected]> * Zscaler add reliability (#27197) * Zscaler - add reliability parameter * added RNs * pre-commit hooks * updated docker image * Changed reliability to Reliability in outputs * updated docker image * updated RNs * updated RNs * hide EWS Pack (#27231) * added hidden key * removed ews from dependencies * added , * added , * removed dependencies to EWS Mail Sender * removed dependencies to EWS Mail Sender * commented a line, to revert after testing * commented a line, to revert after testing * reverted commmenting * added intergration * Squid testdata (#26659) * Update modeling rules * Updated release notes. * update release notes. * new line after alter for the xdm mapping. * Align credentials stores part 14 (#27361) * Align credentials stores for all Cortex Marketplace integrations- part 13 * fix pack * remove ignore * correct ignore * added commands to read me * [ASM] - Expander - Expander v2 Pack enhancements - batch 1 (#27398) * [ASM] - Expander - Expander v2 Pack enhancements - batch 1 (#27006) * initial additional of new Ev2 content * adding playbook readmes * layout update and release notes * validation fixes * widget validation and release notes style * playbook validation errors * Update incidenttype-Xpanse_Alert.json fixed incident type playbook assignment * validation issues * Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Enrichment_README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Handler.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Self-Enrichment.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXpanse/ReleaseNotes/1_0_4.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXpanse/ReleaseNotes/1_0_4.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXpanse/ReleaseNotes/1_0_4.md Co-authored-by: ShirleyDenkberg <[email protected]> * Apply suggestions from code review Co-authored-by: ShirleyDenkberg <[email protected]> * Update widget logic * Update Widget logic * Apply suggestions from code review Co-authored-by: ShirleyDenkberg <[email protected]> * update from_version * Apply suggestions from code review Co-authored-by: johnnywilkes <[email protected]> * Apply suggestions from code review Co-authored-by: johnnywilkes <[email protected]> * Update Packs/CortexXpanse/IncidentTypes/incidenttype-Xpanse_Alert.json Co-authored-by: johnnywilkes <[email protected]> * back to 6.8 fromversion * README enhancements * Playbook cleanup * README img fix * Dashboard fix and incident type version validation fix * README images * release notes error * release notes validation --------- Co-authored-by: ShirleyDenkberg <[email protected]> Co-authored-by: johnnywilkes <[email protected]> * Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Enrichment.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Enrichment.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Handler.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Self-Enrichment.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Self-Enrichment.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Self-Enrichment.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Self-Enrichment.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXpanse/README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXpanse/ReleaseNotes/1_0_4.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXpanse/ReleaseNotes/1_0_4.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXpanse/ReleaseNotes/1_0_4.md Co-authored-by: ShirleyDenkberg <[email protected]> --------- Co-authored-by: Andrew Scott <[email protected]> Co-authored-by: ShirleyDenkberg <[email protected]> Co-authored-by: johnnywilkes <[email protected]> Co-authored-by: RotemAmit <[email protected]> * Align credentials stores part 16 (#27367) * XSIAM | Fix for Windows Events Modeling Rules (#27129) * [VirusTotal] Fix error when optional parameter extended_data is not present in command calls (#27414) * [VirusTotal] Fix error when optional parameter extended_data is not present in command calls (#27411) * Fix error when optional parameter extended_data is not present in command calls * release notes * docker image update * updated rn --------- Co-authored-by: Daniel Pascual <[email protected]> Co-authored-by: michal-dagan <[email protected]> * ironPort modeling rules (#27133) * update modeling rules * update modeling rules * update modeling rules * update modeling rules * update modeling rules * update modeling rules * update modeling rules * update modeling rules * update modeling rules * update modeling rules * update modeling rules * update modeling rules * update modeling rules * update modeling rules * update modeling rules * update modeling rules * update modeling rules * ignore rules suffix validate (#27397) * added marketplaces to event collector yml (#27400) * added marketplaces to event collector yml * rn * removed rn * rn and docker * Email ask user add using argument (#27401) * Added the usingSender argument to enable using only one instance to send the email * Release Notes, Metadata * RM param, add generic fix * Align credentials stores part 15 (#27364) * Align credentials stores - part 15 * Akamai WAF * docker * adding an error * revert irrelevant change * revert irrelevant change * update docker * fix autodiscovery * fix validations * final changes * validation fix * add ut increase timeout * increase timeout and test tpb * add ut * cr last fixes * changed task ids for testing * test tpb change --------- Co-authored-by: tkatzir <[email protected]> Co-authored-by: rshunim <[email protected]> Co-authored-by: Guy Afik <[email protected]> Co-authored-by: content-bot <[email protected]> Co-authored-by: Dror Avrahami <[email protected]> Co-authored-by: sberman <[email protected]> Co-authored-by: Moshe Eichler <[email protected]> Co-authored-by: Menachem Weinfeld <[email protected]> Co-authored-by: eepstain <[email protected]> Co-authored-by: darkushin <[email protected]> Co-authored-by: Mai Morag <[email protected]> Co-authored-by: dorschw <[email protected]> Co-authored-by: Crest Data Systems <[email protected]> Co-authored-by: crestdatasystems <[email protected]> Co-authored-by: recordedfuture-simonhornestedt <109588368+recordedfuture-simonhornestedt@users.noreply.github.com> Co-authored-by: michal-dagan <[email protected]> Co-authored-by: israelpoli <[email protected]> Co-authored-by: Brad Chiappetta <[email protected]> Co-authored-by: johnnywilkes <[email protected]> Co-authored-by: ShirleyDenkberg <[email protected]> Co-authored-by: Yaakov Praisler <[email protected]> Co-authored-by: Ben Melamed <[email protected]> Co-authored-by: anas-yousef <[email protected]> Co-authored-by: yasta5 <[email protected]> Co-authored-by: grzegorzpapkala <[email protected]> Co-authored-by: Content Bot <[email protected]> Co-authored-by: Arad Carmi <[email protected]> Co-authored-by: Suhasini <[email protected]> Co-authored-by: Danny_Fried <[email protected]> Co-authored-by: Michael Yochpaz <[email protected]> Co-authored-by: Viktor Poltorak <[email protected]> Co-authored-by: Fahad Yousuf <[email protected]> Co-authored-by: Erez FelmanDar <[email protected]> Co-authored-by: Edi Katsenelson <[email protected]> Co-authored-by: Shmuel Kroizer <[email protected]> Co-authored-by: shmuel44 <[email protected]> Co-authored-by: samuelFain <[email protected]> Co-authored-by: Koby Meir <[email protected]> Co-authored-by: eli sharf <[email protected]> Co-authored-by: jbabazadeh <[email protected]> Co-authored-by: MLainer1 <[email protected]> Co-authored-by: Liron Michalevich <[email protected]> Co-authored-by: Adi Daud <[email protected]> Co-authored-by: Dan Sterenson <[email protected]> Co-authored-by: xsoar-bot <[email protected]> Co-authored-by: merit-maita <[email protected]> Co-authored-by: cyble-dev <[email protected]> Co-authored-by: RotemAmit <[email protected]> Co-authored-by: yuvalbenshalom <[email protected]> Co-authored-by: ilaner <[email protected]> Co-authored-by: Deepansh <[email protected]> Co-authored-by: Shambo Samanta <[email protected]> Co-authored-by: rootbid <[email protected]> Co-authored-by: pallavi-garad <[email protected]> Co-authored-by: Dan Tavori <[email protected]> Co-authored-by: nkanon <[email protected]> Co-authored-by: evisochek <[email protected]> Co-authored-by: ilan <[email protected]> Co-authored-by: Andrew Scott <[email protected]> Co-authored-by: Daniel Pascual <[email protected]> Co-authored-by: michal-dagan <[email protected]> Co-authored-by: guytamir10 <[email protected]> Co-authored-by: EyalPintzov <[email protected]> Co-authored-by: Andrew Shamah <[email protected]> Co-authored-by: yucohen <[email protected]>
- Loading branch information
66 people
committed
Jul 26, 2023
1 parent
2632ed3
commit 239e5bc