Bump urllib3 from 1.26.9 to 1.26.18 in /Packs/Akamai_WAF/Integrations/Akamai_WAF #80

* Updated Metadata Of Pack TaniumThreatResponse * Added release notes to pack TaniumThreatResponse * Packs/TaniumThreatResponse/Integrations/TaniumThreatResponseV2/TaniumThreatResponseV2.yml Docker image update

* Updated Metadata Of Pack Cybereason * Added release notes to pack Cybereason * Packs/Cybereason/Integrations/Cybereason/Cybereason.yml Docker image update * Updated Metadata Of Pack MicrosoftTeams * Added release notes to pack MicrosoftTeams * Packs/MicrosoftTeams/Integrations/MicrosoftTeamsWebhook/MicrosoftTeamsWebhook.yml Docker image update * Updated Metadata Of Pack ExtraHop * Added release notes to pack ExtraHop * Packs/ExtraHop/Integrations/ExtraHop_v2/ExtraHop_v2.yml Docker image update * Updated Metadata Of Pack Qintel * Added release notes to pack Qintel * Packs/Qintel/Integrations/QintelQSentry/QintelQSentry.yml Docker image update * Packs/Qintel/Integrations/QintelQWatch/QintelQWatch.yml Docker image update * Packs/Qintel/Integrations/QintelPMI/QintelPMI.yml Docker image update * Updated Metadata Of Pack Flashpoint * Added release notes to pack Flashpoint * Packs/Flashpoint/Integrations/Flashpoint/Flashpoint.yml Docker image update * Updated Metadata Of Pack PhishUp * Added release notes to pack PhishUp * Updated Metadata Of Pack VersaDirector * Added release notes to pack VersaDirector * Packs/VersaDirector/Integrations/VersaDirector/VersaDirector.yml Docker image update * Updated Metadata Of Pack SOCRadar * Added release notes to pack SOCRadar * Packs/SOCRadar/Integrations/SOCRadarThreatFusion/SOCRadarThreatFusion.yml Docker image update

…#25955) * ignore ErrorInvalidIdMalformed * fixed raise exception message * rn * docker * rn * conflicts * version * docker * Bump pack from version MicrosoftExchangeOnline to 1.2.1. * conflicts * docker * docker * docker * docker * rn * conflicts * metadata --------- Co-authored-by: Content Bot <[email protected]>

* added the dynamic section script * fix validate * cr changes * fix lint

…to#26517) * Playbooks * Fixed and simplified process email (previously there was a problem where Email.Text would take precedence over Email.HTML if we keep the old fields) * revert phishing playbook changes (no changes required) * added empty descr * Added layout with new dynamic section + moved the email delete result section to be under the email delete button section * Added RN and breaking RN, and changed the playbook to break by default. * Bump pack from version Phishing to 3.5.18. * Apply suggestions from code review Co-authored-by: ShirleyDenkberg <[email protected]> * Fixed invalid reference to dynamic section script * Update Packs/Campaign/Playbooks/Detect_&_Manage_Phishing_Campaigns.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/Phishing/ReleaseNotes/3_5_18.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/Campaign/Playbooks/Detect_&_Manage_Phishing_Campaigns.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/Campaign/Playbooks/Detect_&_Manage_Phishing_Campaigns.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Changed layout to use the new script name "DisplayHTMLWithImages". * Changed the playbook to not break by default * Bump pack from version Phishing to 3.5.19. * new RN * RN * Update 3_2_23.md * Final RN * Trying to fix RN validation * Attempt to fix test playbook --------- Co-authored-by: Content Bot <[email protected]> Co-authored-by: ShirleyDenkberg <[email protected]>

* fix jsx error in OSQueryOpenSocket * RN

…6466) * fix * revert * rn * docker * fix * conflicts * fixed RN * docs fixes * fix the regex to support more date formats * fix the regex * fix last note

…emisto#27027) * Test playbook for 'CrowdStrike Falcon - Get Endpoint Forensics Data' * RN

* Added the base code * more structural changes * added yml and description * added a test * commit * Adding tests * added tests and documentation * removed a duplicate yml conf * commit * commit * commit * commit * commit * changed events typo * formating the code * changes with nextLink * added support for the pagination * commit * commit * commit * modified some tests * Finished the tests and some fixes found by tests * added some test and removed the first fetch time param * fixed a test and some bugs in the code * fixed extra arg in test_module * commit * fixes * commit * Added modelign rules * added the rule * changes in yml and description * Added documentation to functions * Added documentation to tests * removed a file * changed to type 9 and bumped docker image * Update Packs/AzureSecurityCenter/Integrations/MicrosoftDefenderForCloudEventCollector/MicrosoftDefenderForCloudEventCollector_description.md Co-authored-by: ShirleyDenkberg <[email protected]> * Apply suggestions from code review Co-authored-by: ShirleyDenkberg <[email protected]> * fixed a typo in microsoft * changes after doc review * small change in readme.md * fix validations * commit * change in the modeling rules * Added a first_fetch_time handeling * changed the modeling rule of event.outcome_reason * Added the first_fetch time parameter * Empty-Commit * review changes * added some known limitations * changed the hyrarcy of the modeling rules * fixed xif * modeling rules change names * Fixed the modeling rules * updated docker image * removed the RN for the new pack * minor readme changes * Apply suggestions from code review Docs review. Co-authored-by: ShirleyDenkberg <[email protected]> * added RN and bumped version --------- Co-authored-by: ShirleyDenkberg <[email protected]>

* Deprecate Dedup v3 * RN for Deprecate Dedup v3

* better error msg * RN

* Fix `token` parameter BC issue * Bump version * Update release notes --------- Co-authored-by: Content Bot <[email protected]>

* add 'Required Permissions' to the documentation * change api call in test func to get list mails with limit 1 * docker * RN

* Debugs * Debugs * Working attachments * Working attachments * Release notes * Added and fixed unit tests * Added and fixed unit tests * Removed unstable test and formats * Removed unstable test and formats * Update Packs/MailListener/ReleaseNotes/1_0_37.md Co-authored-by: Dean Arbel <[email protected]> * Update docker image * Added test data to solve the secrets validation timeout * Added test data to solve the secrets validation timeout * Added test data to solve the secrets validation timeout * Added test data to solve the secrets validation timeout * Added test data to solve the secrets validation timeout * Added test data to solve the secrets validation timeout * Added test data to solve the secrets validation timeout * Added test data to solve the secrets validation timeout --------- Co-authored-by: Dean Arbel <[email protected]>

* Updated Metadata Of Pack Stairwell * Added release notes to pack Stairwell * Packs/Stairwell/Integrations/Inception/Inception.yml Docker image update * Updated Metadata Of Pack TrustwaveFusion * Added release notes to pack TrustwaveFusion * Packs/TrustwaveFusion/Integrations/TrustwaveFusion/TrustwaveFusion.yml Docker image update * Updated Metadata Of Pack SysAid * Added release notes to pack SysAid * Packs/SysAid/Integrations/SysAid/SysAid.yml Docker image update * Updated Metadata Of Pack Twitter * Added release notes to pack Twitter * Packs/Twitter/Integrations/Twitterv2/Twitterv2.yml Docker image update * Updated Metadata Of Pack SkyhighSecurity * Added release notes to pack SkyhighSecurity * Packs/SkyhighSecurity/Integrations/SkyhighSecurity/SkyhighSecurity.yml Docker image update * Updated Metadata Of Pack Vectra_AI * Added release notes to pack Vectra_AI * Packs/Vectra_AI/Integrations/VectraAIEventCollector/VectraAIEventCollector.yml Docker image update * Packs/Vectra_AI/Integrations/VectraDetect/VectraDetect.yml Docker image update * Updated Metadata Of Pack TrendMicroDeepSecurity * Added release notes to pack TrendMicroDeepSecurity * Packs/TrendMicroDeepSecurity/Integrations/TrendMicroDeepSecurity/TrendMicroDeepSecurity.yml Docker image update * Updated Metadata Of Pack SolarWinds * Added release notes to pack SolarWinds * Packs/SolarWinds/Integrations/SolarWinds/SolarWinds.yml Docker image update * Updated Metadata Of Pack SophosCentral * Added release notes to pack SophosCentral * Packs/SophosCentral/Integrations/SophosCentral/SophosCentral.yml Docker image update

…isto#26988) * [Marketplace Contribution] Content Testing - Content Pack Update (demisto#26088) * "contribution update to pack "Content Testing"" * pack resubmitted * Update UnitTest.yml Added comment field * Update 1_1_2.md updated rn with doc and metadata --------- Co-authored-by: David Uhrlaub <[email protected]> * updated docker image * updated docker image --------- Co-authored-by: xsoar-bot <[email protected]> Co-authored-by: David Uhrlaub <[email protected]> Co-authored-by: merit-maita <[email protected]> Co-authored-by: merit <[email protected]>

* Update Hackuity integration: API key auth, Hackuity.Findings.Status.LastClosedAt (demisto#26558) * Hackuity: API key auth, status last closed at * Update docker image. --------- Co-authored-by: Danny_Fried <[email protected]> * Bump version * align RN 1_0_7 with master * Deprecate login password and support api key * Add default value to deprecated fields. Update README * Take api key from hiddenuser name field. * Remove redundant method. * Remove redundant line. Make api key required. * Change display password. * Update Packs/Hackuity/Integrations/Hackuity/README.md Co-authored-by: Rogdham <[email protected]> * Remove new line in end of file in RN --------- Co-authored-by: Rogdham <[email protected]>

* Updated Metadata Of Pack ipinfo * Added release notes to pack ipinfo * Packs/ipinfo/Integrations/ipinfo_v2/ipinfo_v2.yml Docker image update * Updated Metadata Of Pack PhishTank * Added release notes to pack PhishTank * Packs/PhishTank/Integrations/PhishTankV2/PhishTankV2.yml Docker image update * Updated Metadata Of Pack XForceExchange * Added release notes to pack XForceExchange * Packs/XForceExchange/Integrations/XFE_v2/XFE_v2.yml Docker image update * Updated Metadata Of Pack URLHaus * Added release notes to pack URLHaus * Packs/URLHaus/Integrations/URLHaus/URLHaus.yml Docker image update * Updated Metadata Of Pack CrowdStrikeIntel * Added release notes to pack CrowdStrikeIntel * Packs/CrowdStrikeIntel/Integrations/CrowdStrikeFalconIntel_v2/CrowdStrikeFalconIntel_v2.yml Docker image update --------- Co-authored-by: Shelly Tzohar <[email protected]>

* Reduce number of demisto server calls * Replace format with f-string; Extra refactoring * return_error & return_results refactoring * Insert 'test-module' into try-except * Reduce code duplication; Clean main function * Fix proxy/secure if statement * Update docker image; Update release notes * Update test playbook * Fix GoogleDocs-test playbook validation error * Create GoogleDocs_test.py * Apply suggestion in release notes * Add UTs documentation * Fix Flake8 errors * Fix Flake8 errors * Fix excepted_result strings in UTs

* test commit * Fixed last_run * Added pagination * Added skip limit * Fix modeling rules * Added release notes and updated pack version * Fixed lint and conflicts * Added retries and more tests * Revert yml * Fixed validate * Update docker image * Small fixes * Revert product-vendor name * Fixed CR comment + more refactoring * Small fix * Fixed lint errors * Fixed missing '' * Fixed CR comments * Small comment fix * Added more coverage + changed also implementation for the get command * Fixed last comment

* deprecated the playbook Archer initiate incident * RN for deprecated the playbook Archer initiate incident * Update deprecated content on Block Account - Generic v2 playbook * RN for Update deprecated content on Block Account - Generic v2 playbook * Update Deprecated content on cortex xdr playbooks * RN for Update Deprecated content on cortex xdr playbooks * Update deprecated content on Saas_Security_-_Incident_Processor playbook * RN for Update deprecated content on Saas_Security_-_Incident_Processor playbook * deprecated the playbook Vulnerability Management - Qualys (Job) * RN for deprecated the playbook Vulnerability Management - Qualys (Job) * update command on the playbook Tanium Demo * RN for update command on the playbook Tanium Demo * Update deprecated commands on the playbooks TIE IOC Hunt and `Search_Endpoints_By_Hash_-_TIE` * RN for Update deprecated commands on the playbooks TIE IOC Hunt and `Search_Endpoints_By_Hash_-_TIE` * Bump pack from version CortexXDR to 4.10.41. * Bump pack from version ArcherRSA to 1.2.11. * fix validation errors * update test playbook McAfee TIE to use the integration McAfee Threat Intelligence Exchange V2 * update test playbook McAfee TIE to use the integration McAfee Threat Intelligence Exchange * Bump pack from version CommonPlaybooks to 2.3.65. * Bump pack from version CommonPlaybooks to 2.3.66. * Bump pack from version CortexXDR to 4.10.42. * Bump pack from version McAfee-TIE to 2.0.7. * Bump pack from version CommonPlaybooks to 2.3.67. * Bump pack from version CortexXDR to 4.10.43. * Bump pack from version Tanium to 1.0.25. * Bump pack from version qualys to 1.2.8. * Bump pack from version CortexXDR to 4.10.44. * Bump pack from version CommonPlaybooks to 2.3.68. * Bump pack from version ArcherRSA to 1.2.12. * Bump pack from version qualys to 1.2.9. * Bump pack from version CortexXDR to 4.10.45. * Bump pack from version CommonPlaybooks to 2.3.69. * removed deprecated commands `EPOFindSystem` (EOL) from playbook-Search_Endpoints_By_Hash_-_TIE.yml and from playbook-TIE_-_IOC_Hunt.yml * Deprecated cortex xdr playbooks. replaced with relevance commands * RN for Deprecated cortex xdr playbooks. replaced with relevance commands * Bump pack from version CortexXDR to 4.10.46. * replaced sub-playbook-Cortex_XDR_-_delete_file with relevance commands xdr-file-delete-script-execute * RN after replaced sub-playbook-Cortex_XDR_-_delete_file with relevance commands xdr-file-delete-script-execute * RN after replaced sub-playbook-Cortex_XDR_-_delete_file with relevance commands xdr-file-delete-script-execute * fix validation error - update png name on RM files * Bump pack from version CortexXDR to 4.11.1. * Bump pack from version CommonPlaybooks to 2.3.70. * fix for build error * fix for build error * Bump pack from version CommonPlaybooks to 2.3.71. * Update Packs/ArcherRSA/ReleaseNotes/1_2_12.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXDR/Playbooks/playbook-Cortex_XDR_-_Execute_snippet_code_script.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXDR/Playbooks/playbook-Cortex_XDR_-_True_Positive_Incident_Handling.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/qualys/Playbooks/playbook-Vulnerability_Management__-_Qualys_(Job)_README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/qualys/Playbooks/playbook-Vulnerability_Management__-_Qualys_(Job)_README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXDR/Playbooks/playbook-Cortex_XDR_-_Execute_snippet_code_script_README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/Tanium/ReleaseNotes/1_0_25.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/qualys/Playbooks/playbook-Vulnerability_Management__-_Qualys_(Job)_README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/qualys/ReleaseNotes/1_2_9.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXDR/Playbooks/playbook-Cortex_XDR_-_True_Positive_Incident_Handling.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXDR/Playbooks/playbook-Cortex_XDR_-_True_Positive_Incident_Handling.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXDR/Playbooks/playbook-Cortex_XDR_-_True_Positive_Incident_Handling.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXDR/Playbooks/playbook-Cortex_XDR_-_True_Positive_Incident_Handling.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXDR/Playbooks/playbook-Cortex_XDR_-_True_Positive_Incident_Handling.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXDR/Playbooks/playbook-Cortex_XDR_-_check_file_existence.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXDR/Playbooks/playbook-Cortex_XDR_-_check_file_existence.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXDR/Playbooks/playbook-Cortex_XDR_-_check_file_existence.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXDR/Playbooks/playbook-Cortex_XDR_-_check_file_existence.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXDR/Playbooks/playbook-Cortex_XDR_-_check_file_existence_README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXDR/Playbooks/playbook-Cortex_XDR_-_delete_file.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXDR/Playbooks/playbook-Cortex_XDR_-_delete_file.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXDR/Playbooks/playbook-Cortex_XDR_-_kill_process_README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXDR/Playbooks/playbook-Cortex_XDR_-_delete_file.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXDR/Playbooks/playbook-Cortex_XDR_-_delete_file_README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXDR/Playbooks/playbook-Cortex_XDR_-_execute_commands.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXDR/Playbooks/playbook-Cortex_XDR_-_execute_commands.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXDR/Playbooks/playbook-Cortex_XDR_-_execute_commands_README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXDR/Playbooks/playbook-Cortex_XDR_-_kill_process.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXDR/Playbooks/playbook-Cortex_XDR_-_kill_process.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXDR/Playbooks/playbook-Cortex_XDR_-_kill_process.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXDR/ReleaseNotes/4_11_1.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXDR/ReleaseNotes/4_11_1.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/Tanium/ReleaseNotes/1_0_25.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXDR/ReleaseNotes/4_11_1.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXDR/ReleaseNotes/4_11_1.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXDR/ReleaseNotes/4_11_1.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXDR/ReleaseNotes/4_11_1.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/McAfee-TIE/ReleaseNotes/2_0_7.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/McAfee-TIE/ReleaseNotes/2_0_7.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/McAfee-TIE/ReleaseNotes/2_0_7.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/McAfee-TIE/ReleaseNotes/2_0_7.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/McAfee-TIE/ReleaseNotes/2_0_7.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/McAfee-TIE/ReleaseNotes/2_0_7.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/PrismaSaasSecurity/ReleaseNotes/2_0_21.md Co-authored-by: ShirleyDenkberg <[email protected]> * update after review - rollback and commit only changes on xdr playbooks * update after review - rollback and commit only changes on xdr playbook-Cortex_XDR_-_True_Positive_Incident_Handling.yml * fix for validation error change png name --------- Co-authored-by: Content Bot <[email protected]> Co-authored-by: Sasha Sokolovich <[email protected]> Co-authored-by: ShirleyDenkberg <[email protected]>

* Updated Metadata Of Pack rasterize * Added release notes to pack rasterize * Packs/rasterize/Integrations/rasterize/rasterize.yml Docker image update * Updated Metadata Of Pack ExpanseV2 * Added release notes to pack ExpanseV2 * Packs/ExpanseV2/Scripts/ExpanseGenerateIssueMapWidgetScript/ExpanseGenerateIssueMapWidgetScript.yml Docker image update --------- Co-authored-by: Shelly Tzohar <[email protected]>

…27057) * "pack contribution initial commit" * Update README.md I don't know how to add images to the readme so will look into it later * Update README.md * Update README.md * Delete GoogleVertexAI_image.png * Fix Logo * Update pack_metadata.json * Update GoogleVertexAI.yml * Update GoogleVertexAI.py * Update GoogleVertexAI.yml * Update GoogleVertexAI.yml * Update GoogleVertexAI.py * Update GoogleVertexAI.py * Update GoogleVertexAI.py Changes as per pull request reviewer's feedback * Update GoogleVertexAI.py remove print statement * Update README.md Adding Images to readme * Update README.md Fix Images paths * Add Images folder for readme * Delete Packs/GoogleVertexAI/images directory * Add files via upload * Update README.md replace images with Doc_files * Update GoogleVertexAI.yml Fix yml structure * Delete Packs/GoogleVertexAI/Doc_files directory move doc_files to integration folder * Move Doc_files to integration folder * Update README.md Fix paths with new doc_files folder moved to integration folder * Update GoogleVertexAI.py Fix Flake8 issues and replaced Demisto.log with Demisto.debug * Update GoogleVertexAI.py Fix unused variable * Update GoogleVertexAI.py Fixed Flake8 Errors * Update GoogleVertexAI.py * Update README.md Change images paths and names * Delete Packs/GoogleVertexAI/Integrations/GoogleVertexAI/Doc_files directory No need for that folder anymore * Update GoogleVertexAI.py Fix test_module * Update GoogleVertexAI.py * Update GoogleVertexAI.py Fixing Flake8 issues --------- Co-authored-by: xsoar-bot <[email protected]> Co-authored-by: sepaprivate <[email protected]>

…ded Future" integration instance (demisto#26589) (demisto#27020) * Update playbook-Recorded_Future_CVE_Reputation.yml * Check for "Recorded Future v2" instead of "Recorded Future" integration instance * Check for "Recorded Future v2" instead of "Recorded Future" integration instance * Check for "Recorded Future v2" instead of "Recorded Future" integration instance * Check for "Recorded Future v2" instead of "Recorded Future" integration instance * Check for "Recorded Future v2" instead of "Recorded Future" integration instance * Check for "Recorded Future v2" instead of "Recorded Future" integration instance * Check for "Recorded Future v2" instead of "Recorded Future" integration instance * Check for "Recorded Future v2" instead of "Recorded Future" integration instance * Check for "Recorded Future v2" instead of "Recorded Future" integration instance * Check for "Recorded Future v2" instead of "Recorded Future" integration instance * Check for "Recorded Future v2" instead of "Recorded Future" integration instance * Create 1_5_3.md * update currentVersion to 1.5.3 * scriptarguments inputs.url not needed * scriptarguments inputs.url not needed * ${inputs.URL} instead of ${RecordedFuture.URL.name} playbook currently fails when no RF results are returned * ${inputs.URL} instead of ${RecordedFuture.URL.name} playbook currently fails when no RF results are returned * ${inputs.CVE} instead of ${RecordedFuture.CVE.name} playbook currently fails when no RF results are returned * ${inputs.CVE} instead of ${RecordedFuture.CVE.name} playbook currently fails when no RF results are returned * ${inputs.Domain} instead of ${RecordedFuture.Domain.name} playbook currently fails when no RF results are returned * ${inputs.Domain} instead of ${RecordedFuture.Domain.name} playbook currently fails when no RF results are returned * ${inputs.IP} instead of ${RecordedFuture.IP.name} playbook currently fails when no RF results are returned * ${inputs.IP} instead of ${RecordedFuture.IP.name} playbook currently fails when no RF results are returned * Bump version --------- Co-authored-by: Randy Baldwin <[email protected]> Co-authored-by: Danny_Fried <[email protected]>

* Fix Microsoft Sentinel mirroring BadRequest * fix issue with the UTC time * Add RN * Update the unit test * Update the docker image * Fix review comments

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update old modeling rule and schema * Update new modeling rules * Updated modelling rules * Updated modelling rules and parsing rules * Updated modelling rules, parsing rule, release notes and readme file * remove the _time field from events * Update Packs/FireEyeHX/ReleaseNotes/2_3_7.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/FireEyeHX/README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/FireEyeHX/README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Updated modelling rules and readme file * update RN * update test_populate_modeling_rule_fields * Updated the schema of the modeling rules * Updated the modeling rules * Updated the modeling rules --------- Co-authored-by: adi88d <[email protected]> Co-authored-by: ShirleyDenkberg <[email protected]>

* Updated Metadata Of Pack Armorblox * Added release notes to pack Armorblox * Packs/Armorblox/Integrations/Armorblox/Armorblox.yml Docker image update

* Updated Metadata Of Pack SecurityIntelligenceServicesFeed * Added release notes to pack SecurityIntelligenceServicesFeed * Packs/SecurityIntelligenceServicesFeed/Integrations/SecurityIntelligenceServicesFeed/SecurityIntelligenceServicesFeed.yml Docker image update * Updated Metadata Of Pack AWS-Route53 * Added release notes to pack AWS-Route53 * Packs/AWS-Route53/Integrations/AWSRoute53/AWSRoute53.yml Docker image update * Updated Metadata Of Pack AWS-SecurityHub * Added release notes to pack AWS-SecurityHub * Packs/AWS-SecurityHub/Integrations/AWSSecurityHubEventCollector/AWSSecurityHubEventCollector.yml Docker image update

* Updated Metadata Of Pack AbnormalSecurity * Added release notes to pack AbnormalSecurity * Packs/AbnormalSecurity/Integrations/AbnormalSecurity/AbnormalSecurity.yml Docker image update * Updated Metadata Of Pack AccentureCTI * Added release notes to pack AccentureCTI * Packs/AccentureCTI/Integrations/ACTIIndicatorQuery/ACTIIndicatorQuery.yml Docker image update * Updated Metadata Of Pack AppNovi * Added release notes to pack AppNovi * Updated Metadata Of Pack AHA * Added release notes to pack AHA * Packs/AHA/Integrations/AHA/AHA.yml Docker image update * Updated Metadata Of Pack AMP * Added release notes to pack AMP * Packs/AMP/Integrations/AMPv2/AMPv2.yml Docker image update * Updated Metadata Of Pack AtlassianConfluenceCloud * Added release notes to pack AtlassianConfluenceCloud * Packs/AtlassianConfluenceCloud/Integrations/AtlassianConfluenceCloud/AtlassianConfluenceCloud.yml Docker image update * Updated Metadata Of Pack AWS-ILM * Added release notes to pack AWS-ILM * Packs/AWS-ILM/Integrations/AWSILM/AWSILM.yml Docker image update * Updated Metadata Of Pack Automox * Added release notes to pack Automox * Packs/Automox/Integrations/Automox/Automox.yml Docker image update * Updated Metadata Of Pack PassiveTotal * Added release notes to pack PassiveTotal * Packs/PassiveTotal/Integrations/PassiveTotal_v2/PassiveTotal_v2.yml Docker image update * Updated Metadata Of Pack opswat-metadefender * Added release notes to pack opswat-metadefender * Packs/opswat-metadefender/Integrations/OPSWATMetadefenderV2/OPSWATMetadefenderV2.yml Docker image update

* Updated Metadata Of Pack OPNSense * Added release notes to pack OPNSense * Packs/OPNSense/Integrations/OPNSense/OPNSense.yml Docker image update

* Updated Metadata Of Pack Cylance_Protect * Added release notes to pack Cylance_Protect * Packs/Cylance_Protect/Integrations/Cylance_Protect_v2/Cylance_Protect_v2.yml Docker image update * Updated Metadata Of Pack Silverfort * Added release notes to pack Silverfort * Packs/Silverfort/Integrations/Silverfort/Silverfort.yml Docker image update * Updated Metadata Of Pack MicrosoftManagementActivity * Added release notes to pack MicrosoftManagementActivity * Packs/MicrosoftManagementActivity/Integrations/MicrosoftManagementActivity/MicrosoftManagementActivity.yml Docker image update

* Updated Metadata Of Pack BreachRx * Added release notes to pack BreachRx * Packs/BreachRx/Integrations/BreachRx/BreachRx.yml Docker image update

* Updated Metadata Of Pack HashiCorp-Vault * Added release notes to pack HashiCorp-Vault * Packs/HashiCorp-Vault/Integrations/HashiCorpVault/HashiCorpVault.yml Docker image update

* Updated Metadata Of Pack CiscoWebExFeed * Added release notes to pack CiscoWebExFeed * Packs/CiscoWebExFeed/Integrations/CiscoWebExFeed/CiscoWebExFeed.yml Docker image update

* Updated Metadata Of Pack GSuiteAdmin * Added release notes to pack GSuiteAdmin * Packs/GSuiteAdmin/Integrations/GSuiteAdmin/GSuiteAdmin.yml Docker image update * Updated Metadata Of Pack GoogleSheets * Added release notes to pack GoogleSheets * Packs/GoogleSheets/Integrations/GoogleSheets/GoogleSheets.yml Docker image update * Updated Metadata Of Pack GoogleChronicleBackstory * Added release notes to pack GoogleChronicleBackstory * Packs/GoogleChronicleBackstory/Integrations/GoogleChronicleBackstory/GoogleChronicleBackstory.yml Docker image update * Updated Metadata Of Pack GSuiteSecurityAlertCenter * Added release notes to pack GSuiteSecurityAlertCenter * Packs/GSuiteSecurityAlertCenter/Integrations/GSuiteSecurityAlertCenter/GSuiteSecurityAlertCenter.yml Docker image update * Updated Metadata Of Pack GoogleCalendar * Added release notes to pack GoogleCalendar * Packs/GoogleCalendar/Integrations/GoogleCalendar/GoogleCalendar.yml Docker image update

* Updated Metadata Of Pack CybleThreatIntel * Added release notes to pack CybleThreatIntel * Packs/CybleThreatIntel/Integrations/CybleThreatIntel/CybleThreatIntel.yml Docker image update

* Updated Metadata Of Pack TeamCymru * Added release notes to pack TeamCymru * Packs/TeamCymru/Integrations/TeamCymru/TeamCymru.yml Docker image update

* Updated Metadata Of Pack Kafka * Added release notes to pack Kafka * Packs/Kafka/Integrations/KafkaV3/KafkaV3.yml Docker image update

* Updated Metadata Of Pack KeeperSecretsManager * Added release notes to pack KeeperSecretsManager * Packs/KeeperSecretsManager/Integrations/KeeperSecretsManager/KeeperSecretsManager.yml Docker image update

* Updated Metadata Of Pack AzureDataExplorer * Added release notes to pack AzureDataExplorer * Packs/AzureDataExplorer/Integrations/AzureDataExplorer/AzureDataExplorer.yml Docker image update

* Updated Metadata Of Pack Illumio * Added release notes to pack Illumio * Packs/Illumio/Integrations/IllumioCore/IllumioCore.yml Docker image update

* Updated Metadata Of Pack CyCognito * Added release notes to pack CyCognito * Packs/CyCognito/Integrations/CyCognito/CyCognito.yml Docker image update * Updated Metadata Of Pack FeedCyCognito * Added release notes to pack FeedCyCognito * Packs/FeedCyCognito/Integrations/FeedCyCognito/FeedCyCognito.yml Docker image update

* Updated Metadata Of Pack OctoxLabs * Added release notes to pack OctoxLabs * Packs/OctoxLabs/Integrations/OctoxLabs/OctoxLabs.yml Docker image update

* Updated Metadata Of Pack RemoteAccess * Added release notes to pack RemoteAccess * Packs/RemoteAccess/Integrations/RemoteAccessv2/RemoteAccessv2.yml Docker image update

* Updated Metadata Of Pack AzureKeyVault * Added release notes to pack AzureKeyVault * Packs/AzureKeyVault/Integrations/AzureKeyVault/AzureKeyVault.yml Docker image update * Updated Metadata Of Pack MicrosoftCloudAppSecurity * Added release notes to pack MicrosoftCloudAppSecurity * Packs/MicrosoftCloudAppSecurity/Integrations/MicrosoftCloudAppSecurity/MicrosoftCloudAppSecurity.yml Docker image update * Updated Metadata Of Pack MicrosoftGraphGroups * Added release notes to pack MicrosoftGraphGroups * Packs/MicrosoftGraphGroups/Integrations/MicrosoftGraphGroups/MicrosoftGraphGroups.yml Docker image update * Updated Metadata Of Pack MicrosoftGraphAPI * Added release notes to pack MicrosoftGraphAPI * Packs/MicrosoftGraphAPI/Integrations/MicrosoftGraphAPI/MicrosoftGraphAPI.yml Docker image update * Updated Metadata Of Pack MicrosoftGraphApplications * Added release notes to pack MicrosoftGraphApplications * Packs/MicrosoftGraphApplications/Integrations/MicrosoftGraphApplications/MicrosoftGraphApplications.yml Docker image update * Updated Metadata Of Pack AzureFirewall * Added release notes to pack AzureFirewall * Packs/AzureFirewall/Integrations/AzureFirewall/AzureFirewall.yml Docker image update * Updated Metadata Of Pack X509Certificate * Added release notes to pack X509Certificate * Packs/X509Certificate/Scripts/CertificateExtract/CertificateExtract.yml Docker image update

* Updated Metadata Of Pack TruSTAR * Added release notes to pack TruSTAR * Packs/TruSTAR/Integrations/TruSTAR_V2/TruSTAR_V2.yml Docker image update

* Updated Metadata Of Pack CyberArkIdentity * Added release notes to pack CyberArkIdentity * Packs/CyberArkIdentity/Integrations/CyberArkIdentityEventCollector/CyberArkIdentityEventCollector.yml Docker image update * Updated Metadata Of Pack Dropbox * Added release notes to pack Dropbox * Packs/Dropbox/Integrations/DropboxEventCollector/DropboxEventCollector.yml Docker image update

* Updated Metadata Of Pack FeedDHS * Added release notes to pack FeedDHS * Packs/FeedDHS/Integrations/DHSFeedV2/DHSFeedV2.yml Docker image update * Updated Metadata Of Pack FeedUnit42v2 * Added release notes to pack FeedUnit42v2 * Packs/FeedUnit42v2/Integrations/FeedUnit42v2/FeedUnit42v2.yml Docker image update

* Updated Metadata Of Pack MicrosoftDefenderAdvancedThreatProtection * Added release notes to pack MicrosoftDefenderAdvancedThreatProtection * Packs/MicrosoftDefenderAdvancedThreatProtection/Integrations/MicrosoftDefenderAdvancedThreatProtection/MicrosoftDefenderAdvancedThreatProtection.yml Docker image update

* Updated Metadata Of Pack SMIME_Messaging * Added release notes to pack SMIME_Messaging * Packs/SMIME_Messaging/Integrations/SMIME_Messaging/SMIME_Messaging.yml Docker image update

* Updated Metadata Of Pack Palo_Alto_Networks_WildFire * Added release notes to pack Palo_Alto_Networks_WildFire * Packs/Palo_Alto_Networks_WildFire/Integrations/Palo_Alto_Networks_WildFire_v2/Palo_Alto_Networks_WildFire_v2.yml Docker image update * Updated Metadata Of Pack Shodan * Added release notes to pack Shodan * Packs/Shodan/Integrations/Shodan_v2/Shodan_v2.yml Docker image update * Updated Metadata Of Pack FeedOffice365 * Added release notes to pack FeedOffice365 * Packs/FeedOffice365/Integrations/FeedOffice365/FeedOffice365.yml Docker image update * Updated Metadata Of Pack PrismaCloud * Added release notes to pack PrismaCloud * Packs/PrismaCloud/Integrations/PrismaCloudV2/PrismaCloudV2.yml Docker image update * Updated Metadata Of Pack PrismaCloudCompute * Added release notes to pack PrismaCloudCompute * Packs/PrismaCloudCompute/Integrations/PaloAltoNetworks_PrismaCloudCompute/PaloAltoNetworks_PrismaCloudCompute.yml Docker image update

* Google Key Management Service - moving to type 9 * update to type 9- BeyondTrust Password Safe * type 9 changes MailListener - POP3 * RL * undo changes * update to required: false * fix * trying fix * fix error * false * fix tests errors * cr * spacing

* set feedIncremental and change the First Fetch Time to required * add RN and warning comment * update docker * commit * Apply suggestions from code review Docs review fixes Co-authored-by: Andrew Shamah <[email protected]> * fix syntax --------- Co-authored-by: yuvalbenshalom <[email protected]> Co-authored-by: Andrew Shamah <[email protected]> Co-authored-by: ilaner <[email protected]>

* Catch and release the wild SAX error

* Treaty of Versailles 2.0

* removed epo v1 deprecated commands from the playbook-MAR_-_Endpoint_data_collection.yml * RN for removed epo v1 deprecated commands from the playbook-MAR_-_Endpoint_data_collection.yml * RN for removed epo v1 deprecated commands from the playbook-MAR_-_Endpoint_data_collection.yml * replace deprecated script with the ad-get-user command on playbook-NIST_-_Access_Investigation_-_Generic_6_0.yml * RN for replace deprecated script with the ad-get-user command on playbook-NIST_-_Access_Investigation_-_Generic_6_0.yml * playbook-Vulnerability_Management_-_Nexpose_(Job).yml was deprecated. * RN for playbook-Vulnerability_Management_-_Nexpose_(Job).yml was deprecated. * playbook PaloAltoNetworks_Cortex_XDR_Incident_Sync.yml was deprecated. * RN for deprecated the playbook PaloAltoNetworks_Cortex_XDR_Incident_Sync.yml. * removed deprecated commands `vt-private-get-ip-report` and `threat-crowd-ip` (EOL packs) from playbook-IP_Enrichment_-_External_-_Generic_v2.yml * RN after removed deprecated commands `vt-private-get-ip-report` and `threat-crowd-ip` (EOL packs) from playbook-IP_Enrichment_-_External_-_Generic_v2.yml * removed deprecated commands `vt-private-get-domain-report (VirusTotal - Private API)` from playbook-Domain_Enrichment_-_Generic_v2.yml * RN after removed deprecated commands `vt-private-get-domain-report (VirusTotal - Private API)` from playbook-Domain_Enrichment_-_Generic_v2.yml * Replace cve-search (XFE) with cve-search playbook-CVE_Enrichment_-_Generic_v2.yml. * Replace cve-search (XFE) with cve-search playbook-CVE_Enrichment_-_Generic_v2.yml. * deprecate playbook-Tanium_Demo.yml * replace block indicators v2 to v3 on playbook-Post_Intrusion_Ransomware_Investigation.yml * RN after replaced block indicators v2 to v3 on playbook-Post_Intrusion_Ransomware_Investigation.yml * add new command 'cisco-sma-list-entry-append' to Block Email - Generic v2. the deprecated command 'cisco-email-security-list-entry-add' will remove from the playbook after EOL date: Jul 01, 2023. Ticket - Done * RN after add new command 'cisco-sma-list-entry-append' to Block Email - Generic v2. the deprecated command 'cisco-email-security-list-entry-add' will remove from the playbook after EOL date: Jul 01, 2023. Ticket - Done * error fix RN for xdr * fix validation errors - missing png * Bump pack from version CortexXDR to 4.11.1. * Bump pack from version CommonPlaybooks to 2.3.70. * Update Packs/Tanium/ReleaseNotes/1_0_25.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/Rapid7_Nexpose/ReleaseNotes/1_2_9.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/Ransomware/ReleaseNotes/1_0_11.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/Ransomware/ReleaseNotes/1_0_11.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/NIST/ReleaseNotes/1_0_9.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CommonPlaybooks/Playbooks/playbook-Block_Email_-_Generic_v2.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CommonPlaybooks/Playbooks/playbook-CVE_Enrichment_-_Generic_v2.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CommonPlaybooks/Playbooks/playbook-CVE_Enrichment_-_Generic_v2_README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CommonPlaybooks/Playbooks/playbook-CVE_Enrichment_-_Generic_v2_README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CommonPlaybooks/Playbooks/playbook-CVE_Enrichment_-_Generic_v2_README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/NIST/Playbooks/playbook-NIST_-_Access_Investigation_-_Generic_6_0_README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CommonPlaybooks/Playbooks/playbook-CVE_Enrichment_-_Generic_v2_README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CommonPlaybooks/Playbooks/playbook-CVE_Enrichment_-_Generic_v2_README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CommonPlaybooks/Playbooks/playbook-CVE_Enrichment_-_Generic_v2_README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CommonPlaybooks/Playbooks/playbook-Domain_Enrichment_-_Generic_v2.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/McAfee-MAR/ReleaseNotes/1_0_6.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/NIST/Playbooks/playbook-NIST_-_Access_Investigation_-_Generic_6_0.yml Co-authored-by: ShirleyDenkberg <[email protected]> * fix validation errors - missing png * fix validation errors * fix for validation error * Bump pack from version CommonPlaybooks to 2.3.71. * Bump pack from version Rapid7_Nexpose to 1.2.11. * update RN version * Revert "replace block indicators v2 to v3 on playbook-Post_Intrusion_Ransomware_Investigation.yml" This reverts commit 36f869a. * update after review - rollback and commit only changes. * fix for conflict files * fix for conflict files * Revert "removed deprecated commands `vt-private-get-ip-report` and `threat-crowd-ip` (EOL packs) from playbook-IP_Enrichment_-_External_-_Generic_v2.yml" This reverts commit b13d25c. * rollback to ip enrichment external * Revert "replace block indicators v2 to v3 on playbook-Post_Intrusion_Ransomware_Investigation.yml" This reverts commit 36f869a * new version to playbook-Post_Intrusion_Ransomware_Investigation.yml from 6.5 * RN after new version to playbook-Post_Intrusion_Ransomware_Investigation.yml from 6.5 --------- Co-authored-by: Content Bot <[email protected]> Co-authored-by: ShirleyDenkberg <[email protected]>

…thentication (demisto#27058) * updated prepreq.headers

* changed name * changed name * RN

* Typo fix * Update header validation * Remove accept_type_all header * Update header validation logic * Minor logic updates to accept_headers * Update docker image/release notes * Fix release notes validation * Fix Ruff warning; Update UTs constant * Change Accept header in test playbook * Update accept header * Fix remove_spaces_from_header docstring

* Updated Metadata Of Pack Binalyze * Added release notes to pack Binalyze * Packs/Binalyze/Integrations/BinalyzeAIR/BinalyzeAIR.yml Docker image update * Updated Metadata Of Pack AzureStorageFileShare * Added release notes to pack AzureStorageFileShare * Packs/AzureStorageFileShare/Integrations/AzureStorageFileShare/AzureStorageFileShare.yml Docker image update * Updated Metadata Of Pack BmcITSM * Added release notes to pack BmcITSM * Packs/BmcITSM/Integrations/BmcITSM/BmcITSM.yml Docker image update * Updated Metadata Of Pack AzureStorageTable * Added release notes to pack AzureStorageTable * Packs/AzureStorageTable/Integrations/AzureStorageTable/AzureStorageTable.yml Docker image update * Updated Metadata Of Pack CloudflareWAF * Added release notes to pack CloudflareWAF * Packs/CloudflareWAF/Integrations/CloudflareWAF/CloudflareWAF.yml Docker image update * Updated Metadata Of Pack BitSight * Added release notes to pack BitSight * Packs/BitSight/Integrations/BitSightForSecurityPerformanceManagement/BitSightForSecurityPerformanceManagement.yml Docker image update * Updated Metadata Of Pack CofenseTriage * Added release notes to pack CofenseTriage * Packs/CofenseTriage/Integrations/CofenseTriagev3/CofenseTriagev3.yml Docker image update * Updated Metadata Of Pack AzureStorageQueue * Added release notes to pack AzureStorageQueue * Packs/AzureStorageQueue/Integrations/AzureStorageQueue/AzureStorageQueue.yml Docker image update * Updated Metadata Of Pack SecneurXThreatFeeds * Added release notes to pack SecneurXThreatFeeds * Packs/SecneurXThreatFeeds/Integrations/SecneurXThreatFeeds/SecneurXThreatFeeds.yml Docker image update * Updated Metadata Of Pack OneLogin * Added release notes to pack OneLogin * Packs/OneLogin/Integrations/OneLoginEventCollector/OneLoginEventCollector.yml Docker image update

* Updated Metadata Of Pack PaloAltoNetworks_IoT * Added release notes to pack PaloAltoNetworks_IoT * Packs/PaloAltoNetworks_IoT/Integrations/PaloAltoNetworks_IoT/PaloAltoNetworks_IoT.yml Docker image update * Packs/PaloAltoNetworks_IoT/Scripts/iot_get_raci/iot_get_raci.yml Docker image update * Updated Metadata Of Pack AbuseDB * Added release notes to pack AbuseDB * Packs/AbuseDB/Scripts/AbuseIPDBPopulateIndicators/AbuseIPDBPopulateIndicators.yml Docker image update * Updated Metadata Of Pack PANWComprehensiveInvestigation * Added release notes to pack PANWComprehensiveInvestigation * Packs/PANWComprehensiveInvestigation/Scripts/PanwIndicatorCreateQueries/PanwIndicatorCreateQueries.yml Docker image update

* XSIAM | Cisco Nexus Pack * Updated README * Update Packs/CiscoNexus/README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Added pack-ignore and secret-ignore * Updated README * Updating README --------- Co-authored-by: ShirleyDenkberg <[email protected]>

* Qualys expandr 4226 (demisto#27066) * update integration category * RN/Dockert * Bump pack from version qualys to 1.2.11. --------- Co-authored-by: johnnywilkes <[email protected]> Co-authored-by: Content Bot <[email protected]>

* Support for Tags v3 in Expanderv1 (demisto#26998) *added support for asset_type: - Network - Device - ResponsiveIP --------- Co-authored-by: michal-dagan <[email protected]> * added unitest * fix --------- Co-authored-by: Andrew Scott <[email protected]> Co-authored-by: michal-dagan <[email protected]> Co-authored-by: EyalPintzov <[email protected]>

* ews - get-items enhancement * remove debug * README * CR

* switching to type 9 * more integration thinkst cnaray * more changes * fix errors * fix * fix * adding deprecated * rl * fix * valid * space * rl fix * fixes * updated to required: false * fix cr * remove space * fix unit tests * fix ctred * fix unit test * adding tests * removing note * Update Packs/Workday/Integrations/Workday/Workday.py Co-authored-by: Shelly Tzohar <[email protected]> * fix * change test * Update Packs/Workday/Integrations/Workday/Workday.py Co-authored-by: Shelly Tzohar <[email protected]> * updates * add test * remove info * reverting code changes --------- Co-authored-by: Shelly Tzohar <[email protected]>

* transforming type 4 to type 9 * rl * added Azure Compute v2 * fix * Blueliv adding * docker image * removing IN145 * type4 * changed to required: false * fix IN116 * subscription_id * update * updates * fix * adding Demsito except * temp * fix * fix * fixed error * fix name * renaming * fix * small fix * docker image

…emisto#27098) * update the docker image to stop embed the base64 * CR changes

* Fix for Proofpoint TAP README * Update Packs/ProofpointTAP/README.md Co-authored-by: ShirleyDenkberg <[email protected]> --------- Co-authored-by: ShirleyDenkberg <[email protected]>

* added source_confidence_weight arg * version bump * updated tpb * docker update * docker update * revert docker update to latest passing tpb * tpb - skip get-passive-dns check if error * continue on err * Update playbook-ThreatStream-Test.yml * Update Packs/Anomali_ThreatStream/Integrations/AnomaliThreatStreamv3/AnomaliThreatStreamv3.py Co-authored-by: Shahaf Ben Yakir <[email protected]> * updated readme * remove cmd from tpb --------- Co-authored-by: Shahaf Ben Yakir <[email protected]>

* Netmiko (demisto#26078) * Updated documentation and formatted code per XSOAR-supported standards * Updated Netmiko_description * Updated Netmiko_description * Spelling errors * Initial PR update * Updated per initial PR feedback * Added tests parameter * Refined unit tests * Whitespace cleanup * Resolved markdown table generation issues * Updated documentation * Documentation tuning * Doc updates * Doc update testing * Docs * Doc Cleanup * Code refinement per reviewer comments * Update Release Notes * Update RN * Test commit * Undo test * Code Coverage * Code coverage refinement * Code Coverage * Code Coverage * Code Coverage * Code Coverage * Code Coverage * Code Coverage * Code Coverage * Code Coverage * Code Coverage * Code Coverage * Code Coverage * Code Coverage * Flake8 Corrections * Removed unneeded pragma's * Comment cleanup * Cleanup --------- Co-authored-by: Dan Tavori <[email protected]> * Apply suggestions from code review Co-authored-by: ShirleyDenkberg <[email protected]> * cr notes * update conf.json * docker update, yml fixes and removed tpb * try running tpb again * fix tpb * fix sshkey auth --------- Co-authored-by: Josh Levine <[email protected]> Co-authored-by: Dan Tavori <[email protected]> Co-authored-by: ShirleyDenkberg <[email protected]> Co-authored-by: Dan Tavori <[email protected]>

* fix resenging bug * fix resending bug * cr fix * pre-commit fixes * pre-commit fixes

* add encoding to the url and a UT * RN * pre commit * docker image * Update Packs/TrendMicroDDA/ReleaseNotes/1_0_13.md Co-authored-by: yuvalbenshalom <[email protected]> * add given when then to the UT * remove redundant import --------- Co-authored-by: yuvalbenshalom <[email protected]>

* Update schema file * Update schema file

* Update CODEOWNERS * Update .github/CODEOWNERS Co-authored-by: Andrew Shamah <[email protected]> * Update CODEOWNERS * Update CODEOWNERS * Update CODEOWNERS --------- Co-authored-by: Andrew Shamah <[email protected]>

* Created CiscoASR * Update Packs/CiscoASR/README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CiscoASR/README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CiscoASR/README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CiscoASR/README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Changed ParsingRules directory location * Updated README * Update README.md --------- Co-authored-by: ShirleyDenkberg <[email protected]>

* SentinelOneV2 Content Update * Updated Release Notes - Docker Version Added README.md to Script SentinelOneGetMAC Updated SentinelOne-V2.yml - Docker Version Added unit test for new get-status command Updated SentinelOneGetMAC.yml - Docker Version * Updated Docker Version in Release Note, Integration Yml and Script Yml. * Removed Automation Script Added new command sentinelone-get-agent-mac Updated README.md Renamed sentinelone-get-status to sentinelone-get-dv-query-status Added new test to unit test for new function Updated release notes Updated Docker Version * Updated README.md * Added New Playbook for Running Searches on Endpoints * Updated Playbook Format and Docs * Updated release note * Updated README.md Co-authored-by: Martin Ohl <[email protected]>

* align * Open Align credentials stores to type 9- part 4 * adding Kenna * adding prisma * undo * IN145 * fix * adding CJ105 to ignore * undoing last change * updating conf

* Updated Metadata Of Pack MailSenderNew * Added release notes to pack MailSenderNew * Packs/MailSenderNew/Integrations/MailSenderNew/MailSenderNew.yml Docker image update * Updated Metadata Of Pack AlienVault_OTX * Added release notes to pack AlienVault_OTX * Packs/AlienVault_OTX/Integrations/AlienVault_OTX_v2/AlienVault_OTX_v2.yml Docker image update

* Updated Metadata Of Pack ImageOCR * Added release notes to pack ImageOCR * Packs/ImageOCR/Integrations/ImageOCR/ImageOCR.yml Docker image update

…sto#27166) * Fix "cmds" command argument Update markdown * Update release notes * Update Packs/Netmiko/ReleaseNotes/1_0_3.md --------- Co-authored-by: Josh Levine <[email protected]> Co-authored-by: Dan Tavori <[email protected]>

* Resecurity pack (demisto#26071) * initial Pack commit add Pack description initial Pack commit add Pack description * clean the code, add extra pack docs * add new param 'mode', fixes * add extra information to docs * Update .devcontainer.json name * update dockerimage version * add existing secrets to whitelist * update dockerimage version value * increase test coverage value * remove autogenerated files * Update Packs/Resecurity/Integrations/ResecurityMonitoring/ResecurityMonitoring.py Co-authored-by: Guy Afik <[email protected]> * Update Packs/Resecurity/Integrations/ResecurityMonitoring/ResecurityMonitoring.py Co-authored-by: Guy Afik <[email protected]> * Update Packs/Resecurity/Integrations/ResecurityMonitoring/ResecurityMonitoring.py Co-authored-by: Guy Afik <[email protected]> * Update Packs/Resecurity/Integrations/ResecurityMonitoring/ResecurityMonitoring.py Co-authored-by: Guy Afik <[email protected]> * Update Packs/Resecurity/Integrations/ResecurityMonitoring/ResecurityMonitoring.py Co-authored-by: Guy Afik <[email protected]> * Update Packs/Resecurity/Integrations/ResecurityMonitoring/ResecurityMonitoring.yml Co-authored-by: Guy Afik <[email protected]> * Update Packs/Resecurity/Integrations/ResecurityMonitoring/ResecurityMonitoring.py Co-authored-by: Guy Afik <[email protected]> * Update Packs/Resecurity/Integrations/ResecurityMonitoring/ResecurityMonitoring.py Co-authored-by: Guy Afik <[email protected]> * fix code after suggested commits * Update Packs/Resecurity/Integrations/ResecurityMonitoring/ResecurityMonitoring.py Co-authored-by: Guy Afik <[email protected]> * fix remove white spaces * increase test coverage percent * apply changes after review: change string formatting update command name update docs * initial Pack commit add Pack description initial Pack commit add Pack description * clean the code, add extra pack docs * add new param 'mode', fixes * add extra information to docs * update dockerimage version * add existing secrets to whitelist * update dockerimage version value * increase test coverage value * remove autogenerated files * Update Packs/Resecurity/Integrations/ResecurityMonitoring/ResecurityMonitoring.py Co-authored-by: Guy Afik <[email protected]> * Update Packs/Resecurity/Integrations/ResecurityMonitoring/ResecurityMonitoring.py Co-authored-by: Guy Afik <[email protected]> * Update Packs/Resecurity/Integrations/ResecurityMonitoring/ResecurityMonitoring.py Co-authored-by: Guy Afik <[email protected]> * Update Packs/Resecurity/Integrations/ResecurityMonitoring/ResecurityMonitoring.py Co-authored-by: Guy Afik <[email protected]> * Update Packs/Resecurity/Integrations/ResecurityMonitoring/ResecurityMonitoring.py Co-authored-by: Guy Afik <[email protected]> * Update Packs/Resecurity/Integrations/ResecurityMonitoring/ResecurityMonitoring.yml Co-authored-by: Guy Afik <[email protected]> * Update Packs/Resecurity/Integrations/ResecurityMonitoring/ResecurityMonitoring.py Co-authored-by: Guy Afik <[email protected]> * fix code after suggested commits * Update Packs/Resecurity/Integrations/ResecurityMonitoring/ResecurityMonitoring.py Co-authored-by: Guy Afik <[email protected]> * Update Packs/Resecurity/Integrations/ResecurityMonitoring/ResecurityMonitoring.py Co-authored-by: Guy Afik <[email protected]> * fix remove white spaces * increase test coverage percent * Update .devcontainer.json name * apply changes after review: change string formatting update command name update docs * add pre-commit changes --------- Co-authored-by: oleyur <[email protected]> Co-authored-by: Guy Afik <[email protected]> * revert devcontainer --------- Co-authored-by: oleyur <[email protected]> Co-authored-by: oleyur <[email protected]> Co-authored-by: Guy Afik <[email protected]> Co-authored-by: GuyAfik <[email protected]>

* Changes * Changes Release Notes * Changes Release Notes - Pack Metadata * resolve conflicts * username fix * Bump pack from version CommonPlaybooks to 2.3.68. * Bump pack from version CortexXDR to 4.10.45. * Bump pack from version CommonPlaybooks to 2.3.69. * Bump pack from version CommonTypes to 3.3.71. * Bump pack from version CortexXDR to 4.10.46. * fix * Bump pack from version CortexXDR to 4.11.1. * Bump pack from version CommonPlaybooks to 2.3.70. * Bump pack from version CommonTypes to 3.3.72. * fix * Bump pack from version CommonPlaybooks to 2.3.71. * fix * fix * Bump pack from version CortexXDR to 4.11.2. * Bump pack from version CommonPlaybooks to 2.3.72. * Bump pack from version CortexXDR to 4.11.3. * Bump pack from version CommonPlaybooks to 2.3.73. * Review Fixes * Review Fixes * Review Fixes * Review Fixes * Review Fixes * Fixes --------- Co-authored-by: Content Bot <[email protected]>

…t data (demisto#26570) (demisto#27135) * adding support for arrays of incident data Co-authored-by: Mike Beauchamp <[email protected]>

* Updated Metadata Of Pack AWS-IAM * Added release notes to pack AWS-IAM * Packs/AWS-IAM/Integrations/AWS-IAM/AWS-IAM.yml Docker image update * Updated Metadata Of Pack AWS-AccessAnalyzer * Added release notes to pack AWS-AccessAnalyzer * Packs/AWS-AccessAnalyzer/Integrations/AWS-AccessAnalyzer/AWS-AccessAnalyzer.yml Docker image update * Updated Metadata Of Pack Aws-SecretsManager * Added release notes to pack Aws-SecretsManager * Packs/Aws-SecretsManager/Integrations/AwsSecretsManager/AwsSecretsManager.yml Docker image update

* Updated Metadata Of Pack FreshworksFreshservice * Added release notes to pack FreshworksFreshservice * Packs/FreshworksFreshservice/Integrations/FreshworksFreshservice/FreshworksFreshservice.yml Docker image update * Updated Metadata Of Pack KnowBe4_KMSAT * Added release notes to pack KnowBe4_KMSAT * Packs/KnowBe4_KMSAT/Integrations/KnowBe4KMSATEventCollector/KnowBe4KMSATEventCollector.yml Docker image update * Packs/KnowBe4_KMSAT/Integrations/KnowBe4KMSAT/KnowBe4KMSAT.yml Docker image update * Updated Metadata Of Pack SafeNet_Trusted_Access * Added release notes to pack SafeNet_Trusted_Access * Packs/SafeNet_Trusted_Access/Integrations/SafeNetTrustedAccessEventCollector/SafeNetTrustedAccessEventCollector.yml Docker image update * Updated Metadata Of Pack Cryptocurrency * Added release notes to pack Cryptocurrency * Packs/Cryptocurrency/Integrations/Cryptocurrency/Cryptocurrency.yml Docker image update * Updated Metadata Of Pack Wiz * Added release notes to pack Wiz * Packs/Wiz/Integrations/Wiz/Wiz.yml Docker image update * Updated Metadata Of Pack VMwareWorkspaceONEUEM * Added release notes to pack VMwareWorkspaceONEUEM * Packs/VMwareWorkspaceONEUEM/Integrations/VMwareWorkspaceONEUEM/VMwareWorkspaceONEUEM.yml Docker image update * Updated Metadata Of Pack Unit42Intel * Added release notes to pack Unit42Intel * Packs/Unit42Intel/Integrations/FeedUnit42IntelObjects/FeedUnit42IntelObjects.yml Docker image update * Updated Metadata Of Pack CiscoSMA * Added release notes to pack CiscoSMA * Packs/CiscoSMA/Integrations/CiscoSMA/CiscoSMA.yml Docker image update * Updated Metadata Of Pack IronPort * Added release notes to pack IronPort * Packs/IronPort/Integrations/CiscoEmailSecurityApplianceIronPortV2/CiscoEmailSecurityApplianceIronPortV2.yml Docker image update

* Updated Metadata Of Pack Zabbix * Added release notes to pack Zabbix * Packs/Zabbix/Integrations/Zabbix/Zabbix.yml Docker image update * Updated Metadata Of Pack FeedMalwareBazaar * Added release notes to pack FeedMalwareBazaar * Packs/FeedMalwareBazaar/Integrations/MalwareBazaarFeed/MalwareBazaarFeed.yml Docker image update * Updated Metadata Of Pack FeedGCPWhitelist * Added release notes to pack FeedGCPWhitelist * Packs/FeedGCPWhitelist/Integrations/FeedGoogleIPRanges/FeedGoogleIPRanges.yml Docker image update * Updated Metadata Of Pack AccentureCTI_Feed * Added release notes to pack AccentureCTI_Feed * Packs/AccentureCTI_Feed/Integrations/ACTIIndicatorFeed/ACTIIndicatorFeed.yml Docker image update * Updated Metadata Of Pack SEKOIAIntelligenceCenter * Added release notes to pack SEKOIAIntelligenceCenter * Packs/SEKOIAIntelligenceCenter/Integrations/SEKOIAIntelligenceCenter/SEKOIAIntelligenceCenter.yml Docker image update * Updated Metadata Of Pack FeedCyjax * Added release notes to pack FeedCyjax * Packs/FeedCyjax/Integrations/FeedCyjax/FeedCyjax.yml Docker image update * Updated Metadata Of Pack CommonWidgets * Added release notes to pack CommonWidgets * Packs/CommonWidgets/Scripts/RSSWidget/RSSWidget.yml Docker image update

* Updated Metadata Of Pack OracleCloudInfrastructure * Added release notes to pack OracleCloudInfrastructure * Packs/OracleCloudInfrastructure/Integrations/OracleCloudInfrastructureEventCollector/OracleCloudInfrastructureEventCollector.yml Docker image update

* Updated Metadata Of Pack AzureSQLManagement * Added release notes to pack AzureSQLManagement * Packs/AzureSQLManagement/Integrations/AzureSQLManagement/AzureSQLManagement.yml Docker image update

* Updated Metadata Of Pack CarbonBlackDefense * Added release notes to pack CarbonBlackDefense * Packs/CarbonBlackDefense/Integrations/CarbonBlackLiveResponseCloud/CarbonBlackLiveResponseCloud.yml Docker image update

* Updated Metadata Of Pack GitLab * Added release notes to pack GitLab * Packs/GitLab/Integrations/GitLabEventCollector/GitLabEventCollector.yml Docker image update * Updated Metadata Of Pack Okta * Added release notes to pack Okta * Packs/Okta/Integrations/OktaEventCollector/OktaEventCollector.yml Docker image update

* Updated Metadata Of Pack GoogleCloudSCC * Added release notes to pack GoogleCloudSCC * Packs/GoogleCloudSCC/Integrations/GoogleCloudSCC/GoogleCloudSCC.yml Docker image update * Updated Metadata Of Pack GoogleCloudLogging * Added release notes to pack GoogleCloudLogging * Packs/GoogleCloudLogging/Integrations/GoogleCloudLogging/GoogleCloudLogging.yml Docker image update

* Updated Metadata Of Pack DatadogCloudSIEM * Added release notes to pack DatadogCloudSIEM * Packs/DatadogCloudSIEM/Integrations/DatadogCloudSIEM/DatadogCloudSIEM.yml Docker image update

* Updated Metadata Of Pack RubrikPolaris * Added release notes to pack RubrikPolaris * Packs/RubrikPolaris/Integrations/RubrikPolaris/RubrikPolaris.yml Docker image update

* Updated Metadata Of Pack GreyNoise * Added release notes to pack GreyNoise * Packs/GreyNoise/Integrations/GreyNoise_Community/GreyNoise_Community.yml Docker image update

* Updated Metadata Of Pack Box * Added release notes to pack Box * Packs/Box/Integrations/BoxEventsCollector/BoxEventsCollector.yml Docker image update

* Changed pack support * Added release notes for the support change

* Updated Metadata Of Pack Active_Directory_Query * Added release notes to pack Active_Directory_Query * Packs/Active_Directory_Query/Integrations/Active_Directory_Query/Active_Directory_Query.yml Docker image update * Updated Metadata Of Pack FeedAWS * Added release notes to pack FeedAWS * Packs/FeedAWS/Integrations/FeedAWS/FeedAWS.yml Docker image update * Updated Metadata Of Pack Active_Directory_Query * Updated Metadata Of Pack Active_Directory_Query

* Enables running the ews-message-trace-get command without the sender_address and recipient_address arguments * update RN * comment correction

…on tuning (demisto#26699) (demisto#27169) * added validated files with new changes * added validated files with new test cases * added changes to simplify handling of 'null' in extraData and added 1_2_1.md in releaseNotes * added better assert statements to deal with key error, writer_creds is now a non mandatory param, mdx dependency version bumped dowm, added 1.2.0.md * chore: revert non-package-related changes * chore(release): v1.3.0 version bump * feat: additional checks in assertions * refactor(Devo_v2): remove unnecessary Pipfile * fix(Devo_v2): revert `fetch_incidents_deduplication` parameter removal Now it is set to hidden to avoid its future usage. * fix(Devo_v2): revert `fetch_incidents_limit` parameter requirement * fix(Devo_v2): revert `items_per_page` arguments to be optional again Now the default value is "50" to avoid XSOAR terminating the command. * fix(Devo_v2): restore `limit` argument from devo-multi-table-query command * chore(Devo_v2): bump docker image version * fix(Devo_v2): correct f-string interpolation * fix(Devo_v2): correct validation errors for the `fetch_incidents_deduplication` parameter * chore(Devo_v2,release): correct release notes and upcoming version * docs(Devo_v2): remove mentions of "Deduplication parameters JSON" deprecated parameter * fix(Devo_v2): revert to optional `items_per_page` default value in code * fix(Devo_v2): correct errors surged after applying suggestions from PR * fix(Devo_v2): correct .pack-ignore settings * docs(style,Devo_v2): join lines --------- Co-authored-by: Pável Kalmykov Razgovórov <[email protected]> Co-authored-by: Abhijeet kumar <[email protected]> Co-authored-by: Abhijeet <[email protected]> Co-authored-by: michal-dagan <[email protected]>

* Updated the modeling rules to support more types of logs. * Updated the parsing rule * Updated the parsing rules to support more types of logs. * Added release notes.

* Fixed issues with handling null values. (demisto#27031) * Update .devcontainer.json name * Update .devcontainer.json name * Update .devcontainer.json name * Update .devcontainer.json name * update * Updated docker tags * Updated RN * Added README * Updated RN * Update RN * Update Packs/FiltersAndTransformers/ReleaseNotes/1_2_19.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/FiltersAndTransformers/ReleaseNotes/1_2_19.md Co-authored-by: ShirleyDenkberg <[email protected]> --------- Co-authored-by: spearmin10 <[email protected]> Co-authored-by: RotemAmit <[email protected]> Co-authored-by: ShirleyDenkberg <[email protected]> * fixed pre-commit error --------- Co-authored-by: Masahiko Inoue <[email protected]> Co-authored-by: spearmin10 <[email protected]> Co-authored-by: RotemAmit <[email protected]> Co-authored-by: ShirleyDenkberg <[email protected]> Co-authored-by: RotemAmit <[email protected]>

* update modeling rules * update modeling rules * update modeling rules * update modeling rules * update modeling rules * update modeling rules * update modeling rules * update modeling rules

* Task 26 - change AWSFQDN to NONAWSFQDN * RN

* Update .devcontainer.json name * fix missing opening tag <multi-tenant> * RN * resolve conflict * revert changes devcontainer.json * version * pre commit * Update Packs/PrismaAccess/ReleaseNotes/2_0_4.md Co-authored-by: yuvalbenshalom <[email protected]> --------- Co-authored-by: gbouzar <[email protected]> Co-authored-by: yuvalbenshalom <[email protected]>

* Task 26 - change AzureFQDN to NONAzureFQDN * RN

* fix tag to tags in pan-os-list-rules command * RN

* Updated Metadata Of Pack GenericSQL * Added release notes to pack GenericSQL * Packs/GenericSQL/Integrations/GenericSQL/GenericSQL.yml Docker image update

* align cred * add ExceedLMS IAM

* unskip the TPB * just fo test * rollback test changes * rollback test changes

* first commit * rns and other requirements * major update * added modeling rules - wip * modeling rules changes * some fixes * Update IronscalesEventCollector_test.py * Update IronscalesEventCollector.yml * added modeling rules to rns * auth fix * Update IronscalesModelingRules.xif * updates in collector * precommit fix * cleaner code * better error handling * demo fixes * leftovers (except fetch_ids param) * removed fetch_ids and more stuff * Update IronscalesModelingRules.xif * Apply suggestions from code review Co-authored-by: Shahaf Ben Yakir <[email protected]> * cr notes * fixes * Update Packs/IronscalesEventCollector/Integrations/IronscalesEventCollector/IronscalesEventCollector.py * Apply suggestions from code review Co-authored-by: ShirleyDenkberg <[email protected]> --------- Co-authored-by: Shahaf Ben Yakir <[email protected]> Co-authored-by: ShirleyDenkberg <[email protected]>

* new pack for cve-2023-34362 * fixes * update RN * update RN * fixes * fixes * fixes * secrets ignore * typo in task 74 * revert changes to the MajorBreach pack * update secrets ignore

* Created a new MacOS pack * Removed image.png * Updated ModelingRules * Update README.md * Updated ModelingRules * Updated README * Update Packs/MacOS/README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/MacOS/README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/MacOS/README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/MacOS/README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update README.md --------- Co-authored-by: ShirleyDenkberg <[email protected]> Co-authored-by: evisochek <[email protected]>

* first commit * second commit * bump version * update readme * Update Packs/CommonScripts/ReleaseNotes/1_11_83.md Co-authored-by: Shahaf Ben Yakir <[email protected]> --------- Co-authored-by: Shahaf Ben Yakir <[email protected]>

* Updated Metadata Of Pack FeedSOCRadarThreatFeed * Added release notes to pack FeedSOCRadarThreatFeed * Packs/FeedSOCRadarThreatFeed/Integrations/FeedSOCRadarThreatFeed/FeedSOCRadarThreatFeed.yml Docker image update * Updated Metadata Of Pack epo * Added release notes to pack epo * Packs/epo/Integrations/epoV2/epoV2.yml Docker image update * Updated Metadata Of Pack CiscoStealthwatch * Added release notes to pack CiscoStealthwatch * Packs/CiscoStealthwatch/Integrations/CiscoStealthwatch/CiscoStealthwatch.yml Docker image update * Updated Metadata Of Pack Securonix * Added release notes to pack Securonix * Packs/Securonix/Integrations/Securonix/Securonix.yml Docker image update * Updated Metadata Of Pack NetBox * Added release notes to pack NetBox * Packs/NetBox/Integrations/NetBoxEventCollector/NetBoxEventCollector.yml Docker image update * Updated Metadata Of Pack illuminate * Added release notes to pack illuminate * Packs/illuminate/Integrations/Analyst1/Analyst1.yml Docker image update * Updated Metadata Of Pack BmcHelixRemedyForce * Added release notes to pack BmcHelixRemedyForce * Packs/BmcHelixRemedyForce/Integrations/BmcHelixRemedyForce/BmcHelixRemedyForce.yml Docker image update * Updated Metadata Of Pack Rapid7_InsightIDR * Added release notes to pack Rapid7_InsightIDR * Packs/Rapid7_InsightIDR/Integrations/Rapid7_InsightIDR/Rapid7_InsightIDR.yml Docker image update * Updated Metadata Of Pack Zerohack_XDR * Added release notes to pack Zerohack_XDR * Packs/Zerohack_XDR/Integrations/ZerohackXDR/ZerohackXDR.yml Docker image update * Updated Metadata Of Pack XMCyber * Added release notes to pack XMCyber * Packs/XMCyber/Integrations/XMCyberIntegration/XMCyberIntegration.yml Docker image update

* Updated Metadata Of Pack Zoom * Added release notes to pack Zoom * Packs/Zoom/Integrations/Zoom/Zoom.yml Docker image update * Packs/Zoom/Integrations/ZoomEventCollector/ZoomEventCollector.yml Docker image update

* Updated Metadata Of Pack Jira * Added release notes to pack Jira * Packs/Jira/Integrations/JiraV3/JiraV3.yml Docker image update

* Align credentials part 9 * add Telegram * rl * Update Packs/Telegram/Integrations/Telegram/Telegram.py Co-authored-by: Shelly Tzohar <[email protected]> --------- Co-authored-by: Shelly Tzohar <[email protected]>

* Updated Metadata Of Pack GLPI * Added release notes to pack GLPI * Packs/GLPI/Integrations/GLPI/GLPI.yml Docker image update

* Updated Metadata Of Pack Base * Added release notes to pack Base * Packs/Base/Scripts/HighlightWords/HighlightWords.yml Docker image update * Packs/Base/Scripts/GetIndicatorsByQuery/GetIndicatorsByQuery.yml Docker image update * Packs/Base/Scripts/CheckDockerImageAvailable/CheckDockerImageAvailable.yml Docker image update * Packs/Base/Scripts/GetIncidentsByQuery/GetIncidentsByQuery.yml Docker image update * Packs/Base/Scripts/SearchIndicatorRelationships/SearchIndicatorRelationships.yml Docker image update * Fixed validate and lint --------- Co-authored-by: sberman <[email protected]>

* Updated Metadata Of Pack Jira * Added release notes to pack Jira * Packs/Jira/Integrations/JiraEventCollector/JiraEventCollector.yml Docker image update * Bump pack from version Jira to 3.0.2. --------- Co-authored-by: Content Bot <[email protected]>

* Update .devcontainer.json name * Rubrik Polaris Release 1.2.2 * Updated docker image tags * resolving conflict --------- Co-authored-by: Crest Data Systems <[email protected]> Co-authored-by: crestdatasystems <[email protected]> Co-authored-by: RotemAmit <[email protected]>

* fixed tpb - removed the check for Domain.DomainStatus isNotEmpty

* added argument * added rn * argument name update * Update Packs/OpenCTI/ReleaseNotes/1_0_7.md Co-authored-by: Judah Schwartz <[email protected]> * fixes * fixes * fixes --------- Co-authored-by: Judah Schwartz <[email protected]>

* Update enabled key in script's yml * Update docker images/release notes * Add missing README files * Bump pack from version FiltersAndTransformers to 1.2.20. --------- Co-authored-by: Content Bot <[email protected]>

* remove default values from yml - phase 1 * add err to ignore

* Fix as_pages kwargs argument in function call * Update RN to packs that using TAXII2ApiModule * Change 'pack' to 'script' in release notes * Apply suggestions from docs review Co-authored-by: ShirleyDenkberg <[email protected]> --------- Co-authored-by: ShirleyDenkberg <[email protected]>

* fix issue * update RN --------- Co-authored-by: xsoar-bot <[email protected]>

* Remove CDL from XSIAM marketplace fixes to https://jira-hq.paloaltonetworks.local/browse/CIAC-6091 * remove cdl related packs from mpv2 and skip tasks using those commands

* ivanti-connect-secure-init-pack * ivanti-connect-secure-init-base-modeling * ivanti-connect-secure-refactor-and-enrich-modeling-rule * ivanti-connect-secure-add-parsing-rules * ivanti-connect-secure-fix-parsing-rule * ivanti-connect-secure-refactor-model-rule * ivanti-connect-secure-add-README * ivanti-connect-secure-update-README * ivanti-connect-secure-update-README * ivanti-connect-secure-update-README * ivanti-connect-secure-update-README * Update Packs/IvantiConnectSecure/README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/IvantiConnectSecure/README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/IvantiConnectSecure/README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/IvantiConnectSecure/README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/IvantiConnectSecure/README.md Co-authored-by: ShirleyDenkberg <[email protected]> * ivanti-connect-secure-update-pack-metadata * ivanti-connect-secure-refactor-model-rule * ivanti-connect-secure-refactor-model-rule * ivanti-connect-secure-fix-model-rule-yml * ivanti-connect-secure-fix-categories-on-pack-metadarta --------- Co-authored-by: ShirleyDenkberg <[email protected]>

* Updated Metadata Of Pack JARM * Added release notes to pack JARM * Packs/JARM/Integrations/JARM/JARM.yml Docker image update * Updated Metadata Of Pack Intezer * Added release notes to pack Intezer * Packs/Intezer/Integrations/IntezerV2/IntezerV2.yml Docker image update

* Updated Metadata Of Pack Confluence * Added release notes to pack Confluence * Packs/Confluence/Integrations/Confluence/Confluence.yml Docker image update * Updated Metadata Of Pack CiscoWSA * Added release notes to pack CiscoWSA * Packs/CiscoWSA/Integrations/CiscoWSAV2/CiscoWSAV2.yml Docker image update * Updated Metadata Of Pack SumoLogic_Cloud_SIEM * Added release notes to pack SumoLogic_Cloud_SIEM * Packs/SumoLogic_Cloud_SIEM/Integrations/SumoLogicCloudSIEM/SumoLogicCloudSIEM.yml Docker image update * Updated Metadata Of Pack CiscoUmbrellaReporting * Added release notes to pack CiscoUmbrellaReporting * Packs/CiscoUmbrellaReporting/Integrations/CiscoUmbrellaReporting/CiscoUmbrellaReporting.yml Docker image update * Updated Metadata Of Pack TeamViewer * Added release notes to pack TeamViewer * Packs/TeamViewer/Integrations/TeamViewerEventCollector/TeamViewerEventCollector.yml Docker image update * Updated Metadata Of Pack CyberTriage * Added release notes to pack CyberTriage * Packs/CyberTriage/Integrations/CyberTriage/CyberTriage.yml Docker image update * Updated Metadata Of Pack FortinetFortiwebVM * Added release notes to pack FortinetFortiwebVM * Packs/FortinetFortiwebVM/Integrations/FortinetFortiwebVM/FortinetFortiwebVM.yml Docker image update * Updated Metadata Of Pack WALLIXBastion * Added release notes to pack WALLIXBastion * Packs/WALLIXBastion/Integrations/WAB/WAB.yml Docker image update * Updated Metadata Of Pack CounterCraft * Added release notes to pack CounterCraft * Packs/CounterCraft/Integrations/CounterCraft/CounterCraft.yml Docker image update * Updated Metadata Of Pack CrowdStrikeFalconSandbox * Added release notes to pack CrowdStrikeFalconSandbox * Packs/CrowdStrikeFalconSandbox/Integrations/CrowdStrikeFalconSandboxV2/CrowdStrikeFalconSandboxV2.yml Docker image update

* create modeling rules * update modeling rules * update modeling rules * update modeling rules * update modeling rules * update modeling rules * update modeling rules * update modeling rules * update modeling rules * update modeling rules * update modeling rules * Update Packs/WatchguardFirebox/README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/WatchguardFirebox/README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/WatchguardFirebox/README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/WatchguardFirebox/README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/WatchguardFirebox/README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/WatchguardFirebox/README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/WatchguardFirebox/README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/WatchguardFirebox/README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/WatchguardFirebox/README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/WatchguardFirebox/README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/WatchguardFirebox/README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/WatchguardFirebox/README.md Co-authored-by: ShirleyDenkberg <[email protected]> * update modeling rules --------- Co-authored-by: ShirleyDenkberg <[email protected]>

* Updated Metadata Of Pack MISP * Added release notes to pack MISP * Packs/MISP/Integrations/MISPV3/MISPV3.yml Docker image update --------- Co-authored-by: Shelly Tzohar <[email protected]>

* changes * changes - release notes * changes - fix * fix * fix * fix * fix * fix * fix * Fixes * Update Packs/Phishing/Playbooks/Phishing_-_Generic_v3_6_5.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/Phishing/Playbooks/Phishing_-_Generic_v3_6_5.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/Phishing/Playbooks/Phishing_-_Generic_v3_6_5_README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/Phishing/Playbooks/playbook-Spear_Phishing_Investigation.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/Phishing/Playbooks/playbook-Spear_Phishing_Investigation.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/Phishing/ReleaseNotes/3_5_20.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/Phishing/ReleaseNotes/3_5_20.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/Phishing/ReleaseNotes/3_5_20.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/Phishing/ReleaseNotes/3_5_20.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/Phishing/ReleaseNotes/3_5_20.md Co-authored-by: ShirleyDenkberg <[email protected]> * Fixes * Fixes * Update Packs/Phishing/ReleaseNotes/3_5_20.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/Phishing/Playbooks/playbook-Spear_Phishing_Investigation_README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/Phishing/Playbooks/playbook-Spear_Phishing_Investigation_README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/Phishing/Playbooks/playbook-Spear_Phishing_Investigation_README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/Phishing/Playbooks/playbook-Spear_Phishing_Investigation_README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/Phishing/Playbooks/playbook-Spear_Phishing_Investigation_README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/Phishing/Playbooks/Phishing_-_Generic_v3_6_5.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/Phishing/ReleaseNotes/3_5_20.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/Phishing/ReleaseNotes/3_5_20.md Co-authored-by: ShirleyDenkberg <[email protected]> * Fixes * Fix - Process Email * Fix - Process Email * SLA Enhancements and bug fix * SLA Enhancements and bug fix - layout * fixes --------- Co-authored-by: ShirleyDenkberg <[email protected]>

* Updated ModelingRules * Updated ReleaseNotes * Updated ReleaseNotes

* set some scripts only xsoar * update dockers and RNs * Bump pack from version CommonScripts to 1.11.81. * update docker and correction comment * Bump pack from version CommonScripts to 1.11.82. * commit * Bump pack from version CommonScripts to 1.11.83. * update docker * commit * commit * update RN * Bump pack from version CommonScripts to 1.11.84. * Bump pack from version Base to 1.32.8. --------- Co-authored-by: Content Bot <[email protected]>

* Align credentials stores for all Cortex Marketplace integrations- part 7 * BitcoinAbuse * box * rl * fix * more unit test * more unit tests * yuval try * adding test * cr fixes

…t 6 (demisto#27127) * Align credentials stores for all Cortex Marketplace integrations- part 6 * adding Google BigQuery * rl * change require * removing ignore * cr * required to false * Update Packs/CrowdStrikeFalconStreamingV2/Integrations/CrowdStrikeFalconStreamingV2/CrowdStrikeFalconStreamingV2.py Co-authored-by: Shelly Tzohar <[email protected]> * Update ContentManagement Owner (demisto#27171) * St trustart to community (demisto#27184) * Changed pack support * Added release notes for the support change * update setup poetry version to 8 (demisto#27185) * Update Docker Image To demisto/py3-tools (demisto#27146) * Updated Metadata Of Pack Active_Directory_Query * Added release notes to pack Active_Directory_Query * Packs/Active_Directory_Query/Integrations/Active_Directory_Query/Active_Directory_Query.yml Docker image update * Updated Metadata Of Pack FeedAWS * Added release notes to pack FeedAWS * Packs/FeedAWS/Integrations/FeedAWS/FeedAWS.yml Docker image update * Updated Metadata Of Pack Active_Directory_Query * Updated Metadata Of Pack Active_Directory_Query * Ews extension ps1 bug (demisto#27153) * Enables running the ews-message-trace-get command without the sender_address and recipient_address arguments * update RN * comment correction * Devo_v2 integration: v1.3.0 release with submitted fixes and pagination tuning (demisto#26699) (demisto#27169) * added validated files with new changes * added validated files with new test cases * added changes to simplify handling of 'null' in extraData and added 1_2_1.md in releaseNotes * added better assert statements to deal with key error, writer_creds is now a non mandatory param, mdx dependency version bumped dowm, added 1.2.0.md * chore: revert non-package-related changes * chore(release): v1.3.0 version bump * feat: additional checks in assertions * refactor(Devo_v2): remove unnecessary Pipfile * fix(Devo_v2): revert `fetch_incidents_deduplication` parameter removal Now it is set to hidden to avoid its future usage. * fix(Devo_v2): revert `fetch_incidents_limit` parameter requirement * fix(Devo_v2): revert `items_per_page` arguments to be optional again Now the default value is "50" to avoid XSOAR terminating the command. * fix(Devo_v2): restore `limit` argument from devo-multi-table-query command * chore(Devo_v2): bump docker image version * fix(Devo_v2): correct f-string interpolation * fix(Devo_v2): correct validation errors for the `fetch_incidents_deduplication` parameter * chore(Devo_v2,release): correct release notes and upcoming version * docs(Devo_v2): remove mentions of "Deduplication parameters JSON" deprecated parameter * fix(Devo_v2): revert to optional `items_per_page` default value in code * fix(Devo_v2): correct errors surged after applying suggestions from PR * fix(Devo_v2): correct .pack-ignore settings * docs(style,Devo_v2): join lines --------- Co-authored-by: Pável Kalmykov Razgovórov <[email protected]> Co-authored-by: Abhijeet kumar <[email protected]> Co-authored-by: Abhijeet <[email protected]> Co-authored-by: michal-dagan <[email protected]> * Citrix net scaler adc modeling rules (demisto#27120) * Updated the modeling rules to support more types of logs. * Updated the parsing rule * Updated the parsing rules to support more types of logs. * Added release notes. * Fixed issues with handling null values. (demisto#27199) * Fixed issues with handling null values. (demisto#27031) * Update .devcontainer.json name * Update .devcontainer.json name * Update .devcontainer.json name * Update .devcontainer.json name * update * Updated docker tags * Updated RN * Added README * Updated RN * Update RN * Update Packs/FiltersAndTransformers/ReleaseNotes/1_2_19.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/FiltersAndTransformers/ReleaseNotes/1_2_19.md Co-authored-by: ShirleyDenkberg <[email protected]> --------- Co-authored-by: spearmin10 <[email protected]> Co-authored-by: RotemAmit <[email protected]> Co-authored-by: ShirleyDenkberg <[email protected]> * fixed pre-commit error --------- Co-authored-by: Masahiko Inoue <[email protected]> Co-authored-by: spearmin10 <[email protected]> Co-authored-by: RotemAmit <[email protected]> Co-authored-by: ShirleyDenkberg <[email protected]> Co-authored-by: RotemAmit <[email protected]> * Cisco catalyst addfield (demisto#27102) * update modeling rules * update modeling rules * update modeling rules * update modeling rules * update modeling rules * update modeling rules * update modeling rules * update modeling rules * Prisma cloud playbook fix (demisto#27203) * Task 26 - change AWSFQDN to NONAWSFQDN * RN * Prisma Access logout bug (demisto#26700) * Update .devcontainer.json name * fix missing opening tag <multi-tenant> * RN * resolve conflict * revert changes devcontainer.json * version * pre commit * Update Packs/PrismaAccess/ReleaseNotes/2_0_4.md Co-authored-by: yuvalbenshalom <[email protected]> --------- Co-authored-by: gbouzar <[email protected]> Co-authored-by: yuvalbenshalom <[email protected]> * Prisma cloud playbook fix azure fqdn (demisto#27206) * Task 26 - change AzureFQDN to NONAzureFQDN * RN * PAN-OS tag vs tags bug (demisto#27188) * fix tag to tags in pan-os-list-rules command * RN * unskip DockerHardeningCheck in native ga (demisto#27170) * Update Docker Image To demisto/genericsql (demisto#27211) * Updated Metadata Of Pack GenericSQL * Added release notes to pack GenericSQL * Packs/GenericSQL/Integrations/GenericSQL/GenericSQL.yml Docker image update * Align credentials stores part 8 (demisto#27200) * align cred * add ExceedLMS IAM * Unskipp test playbook (demisto#27193) * unskip the TPB * just fo test * rollback test changes * rollback test changes * Ironscales Event Collector (demisto#26496) * first commit * rns and other requirements * major update * added modeling rules - wip * modeling rules changes * some fixes * Update IronscalesEventCollector_test.py * Update IronscalesEventCollector.yml * added modeling rules to rns * auth fix * Update IronscalesModelingRules.xif * updates in collector * precommit fix * cleaner code * better error handling * demo fixes * leftovers (except fetch_ids param) * removed fetch_ids and more stuff * Update IronscalesModelingRules.xif * Apply suggestions from code review Co-authored-by: Shahaf Ben Yakir <[email protected]> * cr notes * fixes * Update Packs/IronscalesEventCollector/Integrations/IronscalesEventCollector/IronscalesEventCollector.py * Apply suggestions from code review Co-authored-by: ShirleyDenkberg <[email protected]> --------- Co-authored-by: Shahaf Ben Yakir <[email protected]> Co-authored-by: ShirleyDenkberg <[email protected]> * MOVEit Transfer vulnerability (demisto#27209) * new pack for cve-2023-34362 * fixes * update RN * update RN * fixes * fixes * fixes * secrets ignore * typo in task 74 * revert changes to the MajorBreach pack * update secrets ignore * MacOS Mapping (demisto#27064) * Created a new MacOS pack * Removed image.png * Updated ModelingRules * Update README.md * Updated ModelingRules * Updated README * Update Packs/MacOS/README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/MacOS/README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/MacOS/README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/MacOS/README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update README.md --------- Co-authored-by: ShirleyDenkberg <[email protected]> Co-authored-by: evisochek <[email protected]> * GeneratePassword - JS to python (demisto#27134) * first commit * second commit * bump version * update readme * Update Packs/CommonScripts/ReleaseNotes/1_11_83.md Co-authored-by: Shahaf Ben Yakir <[email protected]> --------- Co-authored-by: Shahaf Ben Yakir <[email protected]> * Update Docker Image To demisto/python3 (demisto#27215) * Updated Metadata Of Pack FeedSOCRadarThreatFeed * Added release notes to pack FeedSOCRadarThreatFeed * Packs/FeedSOCRadarThreatFeed/Integrations/FeedSOCRadarThreatFeed/FeedSOCRadarThreatFeed.yml Docker image update * Updated Metadata Of Pack epo * Added release notes to pack epo * Packs/epo/Integrations/epoV2/epoV2.yml Docker image update * Updated Metadata Of Pack CiscoStealthwatch * Added release notes to pack CiscoStealthwatch * Packs/CiscoStealthwatch/Integrations/CiscoStealthwatch/CiscoStealthwatch.yml Docker image update * Updated Metadata Of Pack Securonix * Added release notes to pack Securonix * Packs/Securonix/Integrations/Securonix/Securonix.yml Docker image update * Updated Metadata Of Pack NetBox * Added release notes to pack NetBox * Packs/NetBox/Integrations/NetBoxEventCollector/NetBoxEventCollector.yml Docker image update * Updated Metadata Of Pack illuminate * Added release notes to pack illuminate * Packs/illuminate/Integrations/Analyst1/Analyst1.yml Docker image update * Updated Metadata Of Pack BmcHelixRemedyForce * Added release notes to pack BmcHelixRemedyForce * Packs/BmcHelixRemedyForce/Integrations/BmcHelixRemedyForce/BmcHelixRemedyForce.yml Docker image update * Updated Metadata Of Pack Rapid7_InsightIDR * Added release notes to pack Rapid7_InsightIDR * Packs/Rapid7_InsightIDR/Integrations/Rapid7_InsightIDR/Rapid7_InsightIDR.yml Docker image update * Updated Metadata Of Pack Zerohack_XDR * Added release notes to pack Zerohack_XDR * Packs/Zerohack_XDR/Integrations/ZerohackXDR/ZerohackXDR.yml Docker image update * Updated Metadata Of Pack XMCyber * Added release notes to pack XMCyber * Packs/XMCyber/Integrations/XMCyberIntegration/XMCyberIntegration.yml Docker image update * Update Docker Image To demisto/pyjwt3 (demisto#27217) * Updated Metadata Of Pack Zoom * Added release notes to pack Zoom * Packs/Zoom/Integrations/Zoom/Zoom.yml Docker image update * Packs/Zoom/Integrations/ZoomEventCollector/ZoomEventCollector.yml Docker image update * Update Docker Image To demisto/btfl-soup (demisto#27219) * Updated Metadata Of Pack Jira * Added release notes to pack Jira * Packs/Jira/Integrations/JiraV3/JiraV3.yml Docker image update * Align credentials stores part 9 (demisto#27201) * Align credentials part 9 * add Telegram * rl * Update Packs/Telegram/Integrations/Telegram/Telegram.py Co-authored-by: Shelly Tzohar <[email protected]> --------- Co-authored-by: Shelly Tzohar <[email protected]> * Update Docker Image To demisto/glpi (demisto#27220) * Updated Metadata Of Pack GLPI * Added release notes to pack GLPI * Packs/GLPI/Integrations/GLPI/GLPI.yml Docker image update * Update Docker Image To demisto/python3 (demisto#27210) * Updated Metadata Of Pack Base * Added release notes to pack Base * Packs/Base/Scripts/HighlightWords/HighlightWords.yml Docker image update * Packs/Base/Scripts/GetIndicatorsByQuery/GetIndicatorsByQuery.yml Docker image update * Packs/Base/Scripts/CheckDockerImageAvailable/CheckDockerImageAvailable.yml Docker image update * Packs/Base/Scripts/GetIncidentsByQuery/GetIncidentsByQuery.yml Docker image update * Packs/Base/Scripts/SearchIndicatorRelationships/SearchIndicatorRelationships.yml Docker image update * Fixed validate and lint --------- Co-authored-by: sberman <[email protected]> * Update Docker Image To demisto/fastapi (demisto#27218) * Updated Metadata Of Pack Jira * Added release notes to pack Jira * Packs/Jira/Integrations/JiraEventCollector/JiraEventCollector.yml Docker image update * Bump pack from version Jira to 3.0.2. --------- Co-authored-by: Content Bot <[email protected]> * 1.15.5 (demisto#27065) * Rubrik release 1 2 2 (demisto#26473) (demisto#27223) * Update .devcontainer.json name * Rubrik Polaris Release 1.2.2 * Updated docker image tags * resolving conflict --------- Co-authored-by: Crest Data Systems <[email protected]> Co-authored-by: crestdatasystems <[email protected]> Co-authored-by: RotemAmit <[email protected]> * Fix ExpanseV2 TPB (demisto#27128) * fixed tpb - removed the check for Domain.DomainStatus isNotEmpty * Add search to open cti (demisto#27189) * added argument * added rn * argument name update * Update Packs/OpenCTI/ReleaseNotes/1_0_7.md Co-authored-by: Judah Schwartz <[email protected]> * fixes * fixes * fixes --------- Co-authored-by: Judah Schwartz <[email protected]> * Update enabled key in filters and transformers yml (demisto#27187) * Update enabled key in script's yml * Update docker images/release notes * Add missing README files * Bump pack from version FiltersAndTransformers to 1.2.20. --------- Co-authored-by: Content Bot <[email protected]> * Remove default values from yml - phase 1 (demisto#27190) * remove default values from yml - phase 1 * add err to ignore * [TAXII2ApiModule] Fix kwargs argument in function call (demisto#27205) * Fix as_pages kwargs argument in function call * Update RN to packs that using TAXII2ApiModule * Change 'pack' to 'script' in release notes * Apply suggestions from docs review Co-authored-by: ShirleyDenkberg <[email protected]> --------- Co-authored-by: ShirleyDenkberg <[email protected]> * CoreRestAPI URL suffix fix (demisto#27227) * fix issue * update RN --------- Co-authored-by: xsoar-bot <[email protected]> * precommit fix MDX server (demisto#27232) * fix --------- Co-authored-by: Shelly Tzohar <[email protected]> Co-authored-by: Menachem Weinfeld <[email protected]> Co-authored-by: Adi Daud <[email protected]> Co-authored-by: content-bot <[email protected]> Co-authored-by: israelpoli <[email protected]> Co-authored-by: Pável Kalmykov Razgovórov <[email protected]> Co-authored-by: Abhijeet kumar <[email protected]> Co-authored-by: Abhijeet <[email protected]> Co-authored-by: michal-dagan <[email protected]> Co-authored-by: yasta5 <[email protected]> Co-authored-by: Masahiko Inoue <[email protected]> Co-authored-by: spearmin10 <[email protected]> Co-authored-by: RotemAmit <[email protected]> Co-authored-by: ShirleyDenkberg <[email protected]> Co-authored-by: RotemAmit <[email protected]> Co-authored-by: guytamir10 <[email protected]> Co-authored-by: Tomer Haimof <[email protected]> Co-authored-by: rshunim <[email protected]> Co-authored-by: gbouzar <[email protected]> Co-authored-by: yuvalbenshalom <[email protected]> Co-authored-by: Guy Afik <[email protected]> Co-authored-by: Israel Lappe <[email protected]> Co-authored-by: Dan Tavori <[email protected]> Co-authored-by: Shahaf Ben Yakir <[email protected]> Co-authored-by: Ben Melamed <[email protected]> Co-authored-by: eepstain <[email protected]> Co-authored-by: evisochek <[email protected]> Co-authored-by: sberman <[email protected]> Co-authored-by: Content Bot <[email protected]> Co-authored-by: ilaner <[email protected]> Co-authored-by: Crest Data Systems <[email protected]> Co-authored-by: crestdatasystems <[email protected]> Co-authored-by: Yuval Hayun <[email protected]> Co-authored-by: Judah Schwartz <[email protected]> Co-authored-by: samuelFain <[email protected]> Co-authored-by: Dan Sterenson <[email protected]> Co-authored-by: xsoar-bot <[email protected]>

* Update OpenAiChatGPTV3_description.md (demisto#26641) * added the new description and updated the docker image * bumped the pack version and added relevant release notes * updated the README to include chatgpt-send-prompt command --------- Co-authored-by: sepaprivate <[email protected]> Co-authored-by: RotemAmit <[email protected]>

…security-profile*** command (demisto#27237) * Add XSOAR support for updating existing profile types * RN * fix UT * Update Packs/PAN-OS/ReleaseNotes/1_17_5.md Co-authored-by: Guy Afik <[email protected]> * fix CR * RN * UT was added * Update Packs/PAN-OS/Integrations/Panorama/Panorama.py Co-authored-by: Guy Afik <[email protected]> * Update Packs/PAN-OS/Integrations/Panorama/Panorama.py Co-authored-by: Guy Afik <[email protected]> * Update Packs/PAN-OS/Integrations/Panorama/Panorama.py Co-authored-by: Guy Afik <[email protected]> * Update Packs/PAN-OS/Integrations/Panorama/Panorama.py Co-authored-by: Guy Afik <[email protected]> * Update Packs/PAN-OS/Integrations/Panorama/Panorama.py Co-authored-by: Guy Afik <[email protected]> * fix * flake8 * UT stability --------- Co-authored-by: Guy Afik <[email protected]>

* Updated Metadata Of Pack SplunkPy * Added release notes to pack SplunkPy * Packs/SplunkPy/Integrations/SplunkPy/SplunkPy.yml Docker image update

…misto#27264) * Updated domain extraction playbook * some formatting. * Update playbook-Domain_extraction_test.yml * Update playbook-Domain_extraction_test.yml

* Updated Metadata Of Pack DuoAdminApi * Added release notes to pack DuoAdminApi * Packs/DuoAdminApi/Integrations/DuoEventCollector/DuoEventCollector.yml Docker image update * Packs/DuoAdminApi/Integrations/DuoAdminApi/DuoAdminApi.yml Docker image update

* Updated Metadata Of Pack GoogleDrive * Added release notes to pack GoogleDrive * Packs/GoogleDrive/Integrations/GoogleDrive/GoogleDrive.yml Docker image update

* Updated Metadata Of Pack Darktrace * Added release notes to pack Darktrace * Packs/Darktrace/Integrations/DarktraceMBs/DarktraceMBs.yml Docker image update * Packs/Darktrace/Integrations/DarktraceAIA/DarktraceAIA.yml Docker image update * Updated Metadata Of Pack CybleEvents * Added release notes to pack CybleEvents * Packs/CybleEvents/Integrations/CybleEvents/CybleEvents.yml Docker image update * Updated Metadata Of Pack Censys * Added release notes to pack Censys * Packs/Censys/Integrations/CensysV2/CensysV2.yml Docker image update * Updated Metadata Of Pack VirusTotal * Added release notes to pack VirusTotal * Packs/VirusTotal/Integrations/FeedLivehunt/FeedLivehunt.yml Docker image update * Packs/VirusTotal/Integrations/FeedRetrohunt/FeedRetrohunt.yml Docker image update * Updated Metadata Of Pack CofenseIntelligenceV2 * Added release notes to pack CofenseIntelligenceV2 * Packs/CofenseIntelligenceV2/Integrations/CofenseIntelligenceV2/CofenseIntelligenceV2.yml Docker image update * Updated Metadata Of Pack CheckPointDome9 * Added release notes to pack CheckPointDome9 * Packs/CheckPointDome9/Integrations/CheckPointDome9/CheckPointDome9.yml Docker image update * Updated Metadata Of Pack Reco * Added release notes to pack Reco * Packs/Reco/Integrations/Reco/Reco.yml Docker image update * Updated Metadata Of Pack CimTrak-SystemIntegrityAssurance * Added release notes to pack CimTrak-SystemIntegrityAssurance * Packs/CimTrak-SystemIntegrityAssurance/Integrations/CimTrak/CimTrak.yml Docker image update

* Updated Metadata Of Pack FeedProofpoint * Added release notes to pack FeedProofpoint * Packs/FeedProofpoint/Integrations/FeedProofpoint/FeedProofpoint.yml Docker image update * Updated Metadata Of Pack FortiSIEM * Added release notes to pack FortiSIEM * Packs/FortiSIEM/Integrations/FortiSIEM/FortiSIEM.yml Docker image update * Updated Metadata Of Pack Ipstack * Added release notes to pack Ipstack * Packs/Ipstack/Integrations/Ipstack/Ipstack.yml Docker image update * Updated Metadata Of Pack SafeBreach * Added release notes to pack SafeBreach * Packs/SafeBreach/Integrations/SafeBreach_v2/SafeBreach_v2.yml Docker image update * Updated Metadata Of Pack RedCanary * Added release notes to pack RedCanary * Packs/RedCanary/Integrations/RedCanary/RedCanary.yml Docker image update * Updated Metadata Of Pack PiHole * Added release notes to pack PiHole * Packs/PiHole/Integrations/PiHole/PiHole.yml Docker image update * Updated Metadata Of Pack FeedDShield * Added release notes to pack FeedDShield * Packs/FeedDShield/Integrations/FeedDShield/FeedDShield.yml Docker image update * Updated Metadata Of Pack SafeNet_Trusted_Access * Added release notes to pack SafeNet_Trusted_Access * Packs/SafeNet_Trusted_Access/Integrations/SafeNetTrustedAccess/SafeNetTrustedAccess.yml Docker image update * Updated Metadata Of Pack OpenPhish * Added release notes to pack OpenPhish * Packs/OpenPhish/Integrations/OpenPhish_v2/OpenPhish_v2.yml Docker image update * Updated Metadata Of Pack NistNVD * Added release notes to pack NistNVD * Packs/NistNVD/Integrations/NistNVD/NistNVD.yml Docker image update * Updated Metadata Of Pack Cognni * Added release notes to pack Cognni * Packs/Cognni/Integrations/Cognni/Cognni.yml Docker image update * Updated Metadata Of Pack PANOSPolicyOptimizer * Added release notes to pack PANOSPolicyOptimizer * Packs/PANOSPolicyOptimizer/Integrations/PANOSPolicyOptimizer/PANOSPolicyOptimizer.yml Docker image update * Updated Metadata Of Pack DeveloperTools * Added release notes to pack DeveloperTools * Packs/DeveloperTools/Integrations/CreateIncidents/CreateIncidents.yml Docker image update * Packs/DeveloperTools/Integrations/CustomIndicatorDemo/CustomIndicatorDemo.yml Docker image update * Packs/DeveloperTools/Integrations/APIMetricsValidation/APIMetricsValidation.yml Docker image update * Updated Metadata Of Pack NozomiNetworks * Added release notes to pack NozomiNetworks * Packs/NozomiNetworks/Integrations/NozomiNetworks/NozomiNetworks.yml Docker image update * Updated Metadata Of Pack ANYRUN * Added release notes to pack ANYRUN * Packs/ANYRUN/Integrations/ANYRUN/ANYRUN.yml Docker image update * Updated Metadata Of Pack Carbon_Black_Enterprise_Response * Added release notes to pack Carbon_Black_Enterprise_Response * Packs/Carbon_Black_Enterprise_Response/Integrations/CarbonBlackResponseV2/CarbonBlackResponseV2.yml Docker image update * Updated Metadata Of Pack Absolute * Added release notes to pack Absolute * Packs/Absolute/Integrations/Absolute/Absolute.yml Docker image update * Updated Metadata Of Pack Ironscales * Added release notes to pack Ironscales * Packs/Ironscales/Integrations/Ironscales/Ironscales.yml Docker image update * Updated Metadata Of Pack FeedURLhaus * Added release notes to pack FeedURLhaus * Packs/FeedURLhaus/Integrations/FeedURLhaus/FeedURLhaus.yml Docker image update * Updated Metadata Of Pack Lokpath_Keylight * Added release notes to pack Lokpath_Keylight * Packs/Lokpath_Keylight/Integrations/Lockpath_KeyLight_v2/Lockpath_KeyLight_v2.yml Docker image update * Updated Metadata Of Pack FeedMISP * Added release notes to pack FeedMISP * Packs/FeedMISP/Integrations/FeedMISP/FeedMISP.yml Docker image update * Updated Metadata Of Pack FraudWatch * Added release notes to pack FraudWatch * Packs/FraudWatch/Integrations/FraudWatch/FraudWatch.yml Docker image update * Updated Metadata Of Pack AbnormalSecurity * Added release notes to pack AbnormalSecurity * Packs/AbnormalSecurity/Integrations/AbnormalSecurityEventCollector/AbnormalSecurityEventCollector.yml Docker image update * Updated Metadata Of Pack CovalenceManagedSecurity * Added release notes to pack CovalenceManagedSecurity * Packs/CovalenceManagedSecurity/Integrations/CovalenceManagedSecurity/CovalenceManagedSecurity.yml Docker image update * Updated Metadata Of Pack IllusiveNetworks * Added release notes to pack IllusiveNetworks * Packs/IllusiveNetworks/Integrations/IllusiveNetworks/IllusiveNetworks.yml Docker image update * Updated Metadata Of Pack Edgescan * Added release notes to pack Edgescan * Packs/Edgescan/Integrations/Edgescan/Edgescan.yml Docker image update * Updated Metadata Of Pack PerceptionPoint * Added release notes to pack PerceptionPoint * Packs/PerceptionPoint/Integrations/PerceptionPoint/PerceptionPoint.yml Docker image update * Updated Metadata Of Pack Druva * Added release notes to pack Druva * Packs/Druva/Integrations/Druva/Druva.yml Docker image update * Updated Metadata Of Pack APIVoid * Added release notes to pack APIVoid * Packs/APIVoid/Integrations/APIVoid/APIVoid.yml Docker image update * Updated Metadata Of Pack PingIdentity * Added release notes to pack PingIdentity * Packs/PingIdentity/Integrations/PingOne/PingOne.yml Docker image update * Updated Metadata Of Pack cisco-ise * Added release notes to pack cisco-ise * Packs/cisco-ise/Integrations/cisco-ise/cisco-ise.yml Docker image update * Updated Metadata Of Pack SailPointIdentityIQ * Added release notes to pack SailPointIdentityIQ * Packs/SailPointIdentityIQ/Integrations/SailPointIdentityIQ/SailPointIdentityIQ.yml Docker image update * Updated Metadata Of Pack Cymulate * Added release notes to pack Cymulate * Packs/Cymulate/Integrations/Cymulate/Cymulate.yml Docker image update * Packs/Cymulate/Integrations/Cymulate_v2/Cymulate_v2.yml Docker image update * Updated Metadata Of Pack XSOARmirroring * Added release notes to pack XSOARmirroring * Packs/XSOARmirroring/Integrations/XSOARmirroring/XSOARmirroring.yml Docker image update * Updated Metadata Of Pack XMatters * Added release notes to pack XMatters * Packs/XMatters/Integrations/xMatters/xMatters.yml Docker image update * Updated Metadata Of Pack Zimperium * Added release notes to pack Zimperium * Packs/Zimperium/Integrations/Zimperium/Zimperium.yml Docker image update * Updated Metadata Of Pack RSANetWitnessEndpoint * Added release notes to pack RSANetWitnessEndpoint * Packs/RSANetWitnessEndpoint/Integrations/RSANetWitnessEndpoint/RSANetWitnessEndpoint.yml Docker image update * Updated Metadata Of Pack SymantecBlueCoatMalwareAnalysis * Added release notes to pack SymantecBlueCoatMalwareAnalysis * Packs/SymantecBlueCoatMalwareAnalysis/Integrations/SymantecBlueCoatMalwareAnalysis/SymantecBlueCoatMalwareAnalysis.yml Docker image update * Updated Metadata Of Pack InfoArmor_VigilanteATI * Added release notes to pack InfoArmor_VigilanteATI * Packs/InfoArmor_VigilanteATI/Integrations/InfoArmorVigilanteATI/InfoArmorVigilanteATI.yml Docker image update * Updated Metadata Of Pack AccentureCTI * Added release notes to pack AccentureCTI * Packs/AccentureCTI/Integrations/ACTIVulnerabilityQuery/ACTIVulnerabilityQuery.yml Docker image update * Updated Metadata Of Pack PingCastle * Added release notes to pack PingCastle * Packs/PingCastle/Integrations/PingCastle/PingCastle.yml Docker image update * Updated Metadata Of Pack MaxMind_GeoIP2 * Added release notes to pack MaxMind_GeoIP2 * Packs/MaxMind_GeoIP2/Integrations/MaxMind_GeoIP2/MaxMind_GeoIP2.yml Docker image update * Updated Metadata Of Pack Maltiverse * Added release notes to pack Maltiverse * Packs/Maltiverse/Integrations/Maltiverse/Maltiverse.yml Docker image update * Updated Metadata Of Pack CarbonBlackDefense * Added release notes to pack CarbonBlackDefense * Packs/CarbonBlackDefense/Integrations/CarbonBlackEndpointStandard/CarbonBlackEndpointStandard.yml Docker image update * Updated Metadata Of Pack AlienVault_USM_Anywhere * Added release notes to pack AlienVault_USM_Anywhere * Packs/AlienVault_USM_Anywhere/Integrations/AlienVault_USM_Anywhere/AlienVault_USM_Anywhere.yml Docker image update * Updated Metadata Of Pack ProofpointServerProtection * Added release notes to pack ProofpointServerProtection * Packs/ProofpointServerProtection/Integrations/ProofpointProtectionServerV2/ProofpointProtectionServerV2.yml Docker image update * Updated Metadata Of Pack OpsGenie * Added release notes to pack OpsGenie * Packs/OpsGenie/Integrations/OpsGenieV3/OpsGenieV3.yml Docker image update * Fixed lint and validate --------- Co-authored-by: sberman <[email protected]>

* Fixed a typo in the description * Update the docker image

* Updated ModelingRules * Updated ReleaseNotes * Updated ReleaseNotes * Updated ModelingRules * Updated ModelingRules

) * CS Flacon add tags to upload-custom-ioc command * added RNs

* Align credentials part 11 * Trend Micro Apex * ignore * adding tests to hostlo * Trend Micro Apex tests * trend more test * change test

* remove Syslogv2 from xsiam marketplace * RN * known_words * Update Packs/Syslog/ReleaseNotes/2_0_16.md Co-authored-by: dorschw <[email protected]> * DO --------- Co-authored-by: dorschw <[email protected]>

* edit documentation * edit documentation * RN and DO * fix doc * mistake

* Update .devcontainer.json name * added changes related to ExtrHop 2.1.0 release --------- Co-authored-by: Crest Data Systems <[email protected]> Co-authored-by: crestdatasystems <[email protected]>

* First version/implementation of new List Integration * Added new List integration * Updated validation step requirements and fixed tests to be working as expected * Updated test Coverage * Version bump and fixed frombersion for list app * Added custom content, incident type and classifier for coderepo leakage * Updated some documentation and fixed dockerimages * Bumped version of playbook alert app * Fixed changelog for 1.6.0 to not include an old change * fixed type0 in changelog * removed base64 import * Updated release notes * Update based on review * Removed references to old playbook alerts documentation from creation of integration --------- Co-authored-by: recordedfuture-simonhornestedt <109588368+recordedfuture-simonhornestedt@users.noreply.github.com> Co-authored-by: michal-dagan <[email protected]>

* fix bug by convert the password to bytes * commit * update RN and Docker * comment corrections * commit

…ds (demisto#27067) (demisto#27291) * add sim and timeline updates * fix test file prints * update readme fix tests * updates to readme for pre-commit * updates from pre-commit run * more linting updates * update secrets * fix url in timeline Co-authored-by: Brad Chiappetta <[email protected]>

* init * RN * fix RN * Apply suggestions from code review --------- Co-authored-by: johnnywilkes <[email protected]> Co-authored-by: ShirleyDenkberg <[email protected]>

* panorama tag commands * release notes * release notes * tpb * fix tpb * fix * add kew_words and update description * fix device-group * revert non-relevat change * bump version * - Added device group location to the tags result - Added list request when editing tags to get the properties that are not given in arguments * Update Packs/PAN-OS/Integrations/Panorama/Panorama.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/PAN-OS/Integrations/Panorama/Panorama.yml Co-authored-by: ShirleyDenkberg <[email protected]> * docs fixes * fix UT * pre-commit fix * bump version * pre-commit * CR fix --------- Co-authored-by: ShirleyDenkberg <[email protected]>

* XDRIR fix polling timeout parameter * Added RNs

* Updated Metadata Of Pack WebFileRepository * Added release notes to pack WebFileRepository * Packs/WebFileRepository/Integrations/WebFileRepository/WebFileRepository.yml Docker image update

* Updated Metadata Of Pack DelineaSS * Added release notes to pack DelineaSS * Packs/DelineaSS/Integrations/DelineaSS/DelineaSS.yml Docker image update * Updated Metadata Of Pack Lumu * Added release notes to pack Lumu * Packs/Lumu/Integrations/Lumu/Lumu.yml Docker image update * Updated Metadata Of Pack FlashpointFeed * Added release notes to pack FlashpointFeed * Packs/FlashpointFeed/Integrations/FlashpointFeed/FlashpointFeed.yml Docker image update * Updated Metadata Of Pack FeedLOLBAS * Added release notes to pack FeedLOLBAS * Packs/FeedLOLBAS/Integrations/FeedLOLBAS/FeedLOLBAS.yml Docker image update * Updated Metadata Of Pack Grafana * Added release notes to pack Grafana * Packs/Grafana/Integrations/Grafana/Grafana.yml Docker image update * Updated Metadata Of Pack FireMonSecurityManager * Added release notes to pack FireMonSecurityManager * Packs/FireMonSecurityManager/Integrations/FireMonSecurityManager/FireMonSecurityManager.yml Docker image update * Updated Metadata Of Pack Gatewatcher-AionIQ * Added release notes to pack Gatewatcher-AionIQ * Packs/Gatewatcher-AionIQ/Integrations/GCenter/GCenter.yml Docker image update * Updated Metadata Of Pack McAfeeNSM * Added release notes to pack McAfeeNSM * Packs/McAfeeNSM/Integrations/McAfeeNSMv2/McAfeeNSMv2.yml Docker image update * Updated Metadata Of Pack DeHashed * Added release notes to pack DeHashed * Packs/DeHashed/Integrations/DeHashed/DeHashed.yml Docker image update * Updated Metadata Of Pack IronscalesEventCollector * Added release notes to pack IronscalesEventCollector * Packs/IronscalesEventCollector/Integrations/IronscalesEventCollector/IronscalesEventCollector.yml Docker image update

* Updated Metadata Of Pack Sixgill-Darkfeed * Added release notes to pack Sixgill-Darkfeed * Packs/Sixgill-Darkfeed/Integrations/Sixgill_Darkfeed_Enrichment/Sixgill_Darkfeed_Enrichment.yml Docker image update * Packs/Sixgill-Darkfeed/Integrations/Sixgill_Darkfeed/Sixgill_Darkfeed.yml Docker image update

* Updated Metadata Of Pack Slack * Added release notes to pack Slack * Packs/Slack/Integrations/SlackV3/SlackV3.yml Docker image update

* Majorbreach pack RN update and minor fix to the playbook description * Majorbreach pack RN update and minor fix to the playbook description * fix RN * updates * updates * updates the pack readme

…et custom close state code parameter (demisto#27288) * Fixed issue where incidents would auto close after using the Mirrored XSOAR Ticket custom close state code parameter * Added RN * Fixed RN and added documentation in code * Fixed documentation in code

* Creating modeling and parsing rules for Cisco ISR * Change readme * Change readme * Added ipv6 mapping to modeling rules * fixed const for ip protocol * unified user regex to 1 statement * modified readme file * Modified release notes.

* Add ZeroDayLiveTIFusion Pack * Formatting updates * Remove .lock, set default repotation value * Remove th pipefile * Rename Pack to contain feed - adhere to PA conventions * Reuse existing CSV API module * Metadata updates - post review * Update descriptions Co-authored-by: grzegorzpapkala <[email protected]>

* Updated ModelingRules * Updated ReleaseNotes * Updated ReleaseNotes * Updated ModelingRules

* Updated Metadata Of Pack AutoFocus * Added release notes to pack AutoFocus * Packs/AutoFocus/Integrations/FeedAutofocus/FeedAutofocus.yml Docker image update * Packs/AutoFocus/Integrations/AutofocusV2/AutofocusV2.yml Docker image update * Updated Metadata Of Pack CrowdStrikeFalconX * Added release notes to pack CrowdStrikeFalconX * Packs/CrowdStrikeFalconX/Integrations/CrowdStrikeFalconX/CrowdStrikeFalconX.yml Docker image update * Updated Metadata Of Pack CVESearch * Added release notes to pack CVESearch * Packs/CVESearch/Integrations/CVESearchV2/CVESearchV2.yml Docker image update * Updated Metadata Of Pack Slack * Added release notes to pack Slack * Packs/Slack/Scripts/SlackAskV2/SlackAskV2.yml Docker image update * Bump pack from version Slack to 3.1.39. --------- Co-authored-by: Content Bot <[email protected]>

* replaced depracted playbook * updated RN * changed more TPB * updated RN

* Pass the comment to fetch-credential command. (demisto#27249) * Pass the comment to fetch-credential command. Added auto comment feature to delinea-secret-password-get command. * Updated docker image version * change docker image version * Adhere to RN XSOAR known tempaltes. * Updated the unit test case --------- Co-authored-by: Danny_Fried <[email protected]> * Bump version. --------- Co-authored-by: Suhasini <[email protected]> Co-authored-by: Danny_Fried <[email protected]>

* added needed tags to pack * Added lolbas to "Free Feeds" pack

* Remove common-server-user scripts * Delete READMEs (moved to content-docs)

…emisto#27314) * Use orca score as source for the demisto score Update output for the commands * Upgrade docker version. --------- Co-authored-by: Viktor Poltorak <[email protected]> Co-authored-by: Danny_Fried <[email protected]>

* SimpleSFTP upload-file command added. (demisto#27208) * SimpleSFTP upload-file command added. * Removing print * Updated Readme. Added ReleaseNotes and unified arguments to snake case instead of camel case * Fixed name in integration YAML. * Fixing linting errors. * Update docker image. Include docker image in RN. --------- Co-authored-by: Fahad Yousuf <[email protected]> Co-authored-by: Danny_Fried <[email protected]>

* Fix condition to exclude encoded pdf files * Update release notes * Update missing playbook image * Fix playbook logic to exclude base64 encoded * Update release notes and playbook image * Update playbook-Detonate_File_-_WildFire.yml Fix review comments * Update playbook image and description * Update playbook readme

* Updated Metadata Of Pack AWS-GuardDuty * Added release notes to pack AWS-GuardDuty * Packs/AWS-GuardDuty/Integrations/AWSGuardDutyEventCollector/AWSGuardDutyEventCollector.yml Docker image update * Packs/AWS-GuardDuty/Integrations/AWSGuardDuty/AWSGuardDuty.yml Docker image update

* Updated Metadata Of Pack Code42 * Added release notes to pack Code42 * Packs/Code42/Integrations/Code42/Code42.yml Docker image update

…o#27103) * Update incidentfield-Darktrace_Model_Breach_CommentCount.json * Update pack_metadata.json * Create 2_0_6.md * Update 2_0_6.md * Update 2_0_6.md * RN * RN * RN

* Added get policy command * change from AWS-Lambda to AWS_Lambda * Added UT for policy * Fix UT * Fix UT * del duplicate code * Added list-versions and url_config * update yml * added 3 commands * added 3 commands * update docker * lint MD * fix yml * update RN * improve * added readme and some improve * del copy * added docstring * fix line to long * test playbook and update docker * update fromVersion * Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml Co-authored-by: ShirleyDenkberg <[email protected]> * change List of strings to list * Apply suggestions from code review Co-authored-by: ShirleyDenkberg <[email protected]> * Apply suggestions from code review Co-authored-by: ShirleyDenkberg <[email protected]> * change md * autofix on * autofix * autofix * Apply automatic changes * Revert "autofix on" This reverts commit 1039a09. * Revert "autofix on" This reverts commit 1039a09. * undo pre-commit * update docker * fix demo * update yml * change file name * change file name to aws_lambda * update docker and UT * fix mypy * fix * undo fix * update docker and cr * added Principal * update docker --------- Co-authored-by: ShirleyDenkberg <[email protected]> Co-authored-by: shmuel44 <[email protected]>

* Change source_user arg to list * Update yml file * Update yml changes to pan-os and panorama * Update release notes * Update 1_17_5.md * Rename 1_17_5.md to 1_17_6.md * Delete 1_17_6.md * Update RN * Add UT for PR changes * Update README.md * Update Packs/PAN-OS/ReleaseNotes/1_17_6.md Co-authored-by: Guy Afik <[email protected]> * Version bump * Update docker image * Update RN --------- Co-authored-by: Guy Afik <[email protected]>

* custom user agent on builds

* Update .devcontainer.json name * Added cofense-report-attachment-payload-list command * Updated context example in report attachment payload list command * Updated docker images in all YML files * Updated release notes --------- Co-authored-by: Crest Data Systems <[email protected]> Co-authored-by: crestdatasystems <[email protected]> Co-authored-by: michal-dagan <[email protected]>

) * Associate "Action" field to all types * RN

* Align credentials stores part 10 * SumoLogic * Proofpoint Feed * required change * adding tests

* add fetch logs to nightly build fetch integrations * fix QRadar tests * update release notes and docker files * fix expansev2 * rn * fix logs * fix flask8 * added date field to skip incident log * resolve conflict * Bump pack from version QRadar to 2.4.22. --------- Co-authored-by: Content Bot <[email protected]>

* cortexDataLake * update docker * GenericSQL logs * update rn * md-atp logs * update docker * adding time to skip incidents * update docker

* AWS Feed - added support for IPv6 * added tests * cr * tests an rn * validation * rn * cr * di

* Bump sane-pdf-report docker image * Bump pack from version Base to 1.32.11. --------- Co-authored-by: Content Bot <[email protected]>

* fixed file name * RN * RN * Update 3_3_74.md

* update setup poetry * use pip * change Setup Poetry to use Gr1N * change Setup Poetry to use Gr1N in pre commit

https://editorconfig.org/

* bug fix * RN update --------- Co-authored-by: xsoar-bot <[email protected]>

* fix docs * RN

* fixed a mypy issue * added rn * fix

* Enhancement for modeling rules. * added telephony modeling rule * modified modeling rule * modified shcema file. * Added release notes. * Added release notes. * updated pack metadata release notes.

* "Plug & Enrich" tags and FreeEnrichers pack * Added tags to approved list * Updated and corrected the readme. * Another small fix of a typo in readme * Reverted accidentally removing pack name * Better formatting * Added "Free Enricher" to all "Plug & Fetch" enrichers

* fix type * Add UTs for changed add_reply function * add credential defaults, improve UT --------- Co-authored-by: samuelFain <[email protected]>

* Added code for integration of events * Code review Feedback * changes in fetch incident * PR Review change * PR Review change * changes in read me file * Changed read me file based on the review * Changes for playbook and intergration * changes in the read me file * PR changes * changes in image and docker image * change in services in alert * changes for alert * Changes in docker image * Changes for docker image * Update Packs/CybleThreatIntel/Integrations/CybleThreatIntel/CybleThreatIntel.yml * Update Packs/CybleEventsV2/Integrations/CybleEventsV2/CybleEventsV2.yml --------- Co-authored-by: cyble-dev <[email protected]> Co-authored-by: RotemAmit <[email protected]>

…ass (new grid field) (demisto#27352) * Added rank to domain * RN * Update CommonServerPython.py * RN

* SplunkPy - fix uninformative error message when missing timezone in mirroring * Added RNs * Updated readme * CR updates * Update Packs/SplunkPy/ReleaseNotes/3_0_20.md Co-authored-by: yuvalbenshalom <[email protected]> * Updated Docker Image --------- Co-authored-by: yuvalbenshalom <[email protected]>

…7386) * Zscaler ZIA enhancement: Add IP Destination group commands (demisto#26447) * ZIA Enhancement: IP destination group commands * Included 3 new commands for Zscaler Integration as follows:: - Added zscaler-list-ip-destination-groups - Added zscaler-create-ip-destination-groups - Added zscaler-edit-ip-destination-groups --------- Co-authored-by: rootbid <[email protected]> * ZIA Enhancement: IP destination group commands * Included 2 new commands for Zscaler Integration as follows:: - Added zscaler-list-ip-destination-groups-lite - Added zscaler-delete-ip-destination-groups --------- Author: pallavi-garad <[email protected]> Co-authored-by: rootbid <[email protected]> * Minor updates and fixes * Update and add documentation links for Zscaler ZIA * Zscaler ZIA Enhancement - Update with requested changes * Update .devcontainer.json name * merge list-ip-destination-groups and lite command * fixed minor issues * update lite argument description --------- Co-authored-by: rootbid <[email protected]> * Update .devcontainer/devcontainer.json Co-authored-by: Dan Tavori <[email protected]> * Update as per review comments - Fix exceptions - Use CommandResults - Refactor zscaler-list-ip-destination-groups and zscaler-edit-ip-destination-group commands - Update release notes * Regenerate README after updating Zscaler.yml and unit test bug fixes * Resolve merge conflicts * Fix type annotations and update docker image * Update Packs/Zscaler/ReleaseNotes/1_3_10.md Co-authored-by: Dan Tavori <[email protected]> --------- Co-authored-by: Shambo Samanta <[email protected]> Co-authored-by: rootbid <[email protected]> Co-authored-by: pallavi-garad <[email protected]> Co-authored-by: Dan Tavori <[email protected]> * Apply suggestions from code review Co-authored-by: ShirleyDenkberg <[email protected]> --------- Co-authored-by: Deepansh <[email protected]> Co-authored-by: Shambo Samanta <[email protected]> Co-authored-by: rootbid <[email protected]> Co-authored-by: pallavi-garad <[email protected]> Co-authored-by: Dan Tavori <[email protected]> Co-authored-by: ShirleyDenkberg <[email protected]>

* XSIAM | ForcepointSWG Pack * Added pack files * Added pack-ignore and secrets-ignore * Apply suggestions from code review Co-authored-by: ShirleyDenkberg <[email protected]> * Apply suggestions from code review Co-authored-by: ShirleyDenkberg <[email protected]> * Updated ModelingRules --------- Co-authored-by: ShirleyDenkberg <[email protected]> Co-authored-by: evisochek <[email protected]>

…zure-sentinel-threat-indicator-query (demisto#27380) * keywords argument from comma separate to str in azure-sentinel-threat -indicator-query command * RN * DO * Update Packs/AzureSentinel/Integrations/AzureSentinel/README.md Co-authored-by: dorschw <[email protected]> * Update Packs/AzureSentinel/Integrations/AzureSentinel/AzureSentinel.yml Co-authored-by: dorschw <[email protected]> * Update Packs/AzureSentinel/ReleaseNotes/1_5_8.md Co-authored-by: dorschw <[email protected]> * under sources * additional info for clarification * Update Packs/AzureSentinel/Integrations/AzureSentinel/README.md Co-authored-by: dorschw <[email protected]> * Update Packs/AzureSentinel/Integrations/AzureSentinel/AzureSentinel.yml Co-authored-by: dorschw <[email protected]> * Update Packs/AzureSentinel/Integrations/AzureSentinel/AzureSentinel.yml Co-authored-by: dorschw <[email protected]> * validate yml * validate yml * revert and Dor's solution * revert README * Update Packs/AzureSentinel/Integrations/AzureSentinel/AzureSentinel.py Co-authored-by: dorschw <[email protected]> * add instance name for the TPB --------- Co-authored-by: dorschw <[email protected]>

* Updated Metadata Of Pack MailListener * Added release notes to pack MailListener * Packs/MailListener/Integrations/MailListenerV2/MailListenerV2.yml Docker image update

* remove playbooks * remove scripts * remove integrations * remove integrations * remove README * remove script/integration packs * fix UT * False

* Align credentials stores part 5 * adding IBM * RL * checking new docker image * update * docker to fix pre-commit * fix docker * update docker in rl * add test req * old docker * rl * docker --------- Co-authored-by: ilan <[email protected]>

* Zscaler - add reliability parameter * added RNs * pre-commit hooks * updated docker image * Changed reliability to Reliability in outputs * updated docker image * updated RNs * updated RNs

* added hidden key * removed ews from dependencies * added , * added , * removed dependencies to EWS Mail Sender * removed dependencies to EWS Mail Sender * commented a line, to revert after testing * commented a line, to revert after testing * reverted commmenting * added intergration

* Update modeling rules * Updated release notes. * update release notes. * new line after alter for the xdm mapping.

* Align credentials stores for all Cortex Marketplace integrations- part 13 * fix pack * remove ignore * correct ignore * added commands to read me

…7398) * [ASM] - Expander - Expander v2 Pack enhancements - batch 1 (demisto#27006) * initial additional of new Ev2 content * adding playbook readmes * layout update and release notes * validation fixes * widget validation and release notes style * playbook validation errors * Update incidenttype-Xpanse_Alert.json fixed incident type playbook assignment * validation issues * Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Enrichment_README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Handler.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Self-Enrichment.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXpanse/ReleaseNotes/1_0_4.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXpanse/ReleaseNotes/1_0_4.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXpanse/ReleaseNotes/1_0_4.md Co-authored-by: ShirleyDenkberg <[email protected]> * Apply suggestions from code review Co-authored-by: ShirleyDenkberg <[email protected]> * Update widget logic * Update Widget logic * Apply suggestions from code review Co-authored-by: ShirleyDenkberg <[email protected]> * update from_version * Apply suggestions from code review Co-authored-by: johnnywilkes <[email protected]> * Apply suggestions from code review Co-authored-by: johnnywilkes <[email protected]> * Update Packs/CortexXpanse/IncidentTypes/incidenttype-Xpanse_Alert.json Co-authored-by: johnnywilkes <[email protected]> * back to 6.8 fromversion * README enhancements * Playbook cleanup * README img fix * Dashboard fix and incident type version validation fix * README images * release notes error * release notes validation --------- Co-authored-by: ShirleyDenkberg <[email protected]> Co-authored-by: johnnywilkes <[email protected]> * Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Enrichment.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Enrichment.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Handler.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Self-Enrichment.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Self-Enrichment.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Self-Enrichment.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Self-Enrichment.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXpanse/README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXpanse/ReleaseNotes/1_0_4.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXpanse/ReleaseNotes/1_0_4.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexXpanse/ReleaseNotes/1_0_4.md Co-authored-by: ShirleyDenkberg <[email protected]> --------- Co-authored-by: Andrew Scott <[email protected]> Co-authored-by: ShirleyDenkberg <[email protected]> Co-authored-by: johnnywilkes <[email protected]> Co-authored-by: RotemAmit <[email protected]>

…resent in command calls (demisto#27414) * [VirusTotal] Fix error when optional parameter extended_data is not present in command calls (demisto#27411) * Fix error when optional parameter extended_data is not present in command calls * release notes * docker image update * updated rn --------- Co-authored-by: Daniel Pascual <[email protected]> Co-authored-by: michal-dagan <[email protected]>

* update modeling rules * update modeling rules * update modeling rules * update modeling rules * update modeling rules * update modeling rules * update modeling rules * update modeling rules * update modeling rules * update modeling rules * update modeling rules * update modeling rules * update modeling rules * update modeling rules * update modeling rules * update modeling rules * update modeling rules

* added marketplaces to event collector yml * rn * removed rn * rn and docker

* Added the usingSender argument to enable using only one instance to send the email * Release Notes, Metadata * RM param, add generic fix

…n. (demisto#27375) * Nightly build XSIAM - search & install packs retry mechanism is broken.

* fixes * fixes * test fixes

Bumps [urllib3](https://github.com/urllib3/urllib3) from 1.26.9 to 1.26.18. - [Release notes](https://github.com/urllib3/urllib3/releases) - [Changelog](https://github.com/urllib3/urllib3/blob/main/CHANGES.rst) - [Commits](urllib3/urllib3@1.26.9...1.26.18) --- updated-dependencies: - dependency-name: urllib3 dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]>

Commits on May 28, 2023

add packs.json to the build (demisto#26975 )

ilaner authored May 28, 2023

Configuration menu

View commit details

Copy full SHA for 9568dbc

Browse repository at this point

Copy the full SHA

9568dbc View commit details

Browse the repository at this point in the history

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump urllib3 from 1.26.9 to 1.26.18 in /Packs/Akamai_WAF/Integrations/Akamai_WAF #80

Bump urllib3 from 1.26.9 to 1.26.18 in /Packs/Akamai_WAF/Integrations/Akamai_WAF #80

Commits on May 28, 2023

Commits on May 29, 2023

Commits on May 30, 2023

Commits on May 31, 2023

Commits on Jun 1, 2023

Commits on Jun 2, 2023

Commits on Jun 3, 2023

Commits on Jun 4, 2023

Commits on Jun 5, 2023

Commits on Jun 6, 2023

Commits on Jun 7, 2023

Commits on Jun 8, 2023

Commits on Jun 9, 2023

Commits on Jun 11, 2023

Commits on Jun 12, 2023

Commits on Jun 13, 2023

Commits on Jun 14, 2023

Commits on Oct 18, 2023

Bump urllib3 from 1.26.9 to 1.26.18 in /Packs/Akamai_WAF/Integrations/Akamai_WAF #80

Are you sure you want to change the base?

Bump urllib3 from 1.26.9 to 1.26.18 in /Packs/Akamai_WAF/Integrations/Akamai_WAF #80

Commits on May 28, 2023

Commits on May 29, 2023

Commits on May 30, 2023

Commits on May 31, 2023

Commits on Jun 1, 2023

Commits on Jun 2, 2023

Commits on Jun 3, 2023

Commits on Jun 4, 2023

Commits on Jun 5, 2023

Commits on Jun 6, 2023

Commits on Jun 7, 2023

Commits on Jun 8, 2023

Commits on Jun 9, 2023

Commits on Jun 11, 2023

Commits on Jun 12, 2023

Commits on Jun 13, 2023

Commits on Jun 14, 2023

Commits on Oct 18, 2023