Skip to main content

XSOAR Lab Updates

Details
Content
Dependencies
Version History

Download With Dependencies

Manage Cortex XSOAR updates

XSOAR Lab Updates

Main Use-Case

Send weekly notifications of new packs to a dedicated Slack channel.

What does this pack do?

We update on new packs once every week.
New packs are being retrieved from the public index by the "created" field, along with other fields from the pack marketplace metadata.

We use a XSOAR list (NewPacksNotifierLastRun) to cache last run times. In each playbook run the last run time is retrieved from the list, and in the end of the run, being set to the updated last run time.

Slack message is built, showing the 10 "top" packs in full preview and all others as a list.
For each pack in full preview we show:

author
support
description
price / "FREE"
[name](xsoar.pan.dev link)

Pack Contents

BuildSlackBlocksFromIndex Script - calculate the new packs from the last run and build the corresponding Slack message.
NewPacksNotifier Playbook - The playbook maintains the last run times of the script and executes it. Recommended to configure a job to run this playbook.

Integrations Used

Slack V2

XSOAR Lab Updates

Main Use-Case

Send weekly notifications of new packs to a dedicated Slack channel.

What does this pack do?

We update on new packs once every week.
New packs are being retrieved from the public index by the "created" field, along with other fields from the pack marketplace metadata.

We use a XSOAR list (NewPacksNotifierLastRun) to cache last run times. In each playbook run the last run time is retrieved from the list, and in the end of the run, being set to the updated last run time.

Slack message is built, showing the 10 "top" packs in full preview and all others as a list.
For each pack in full preview we show:

author
support
description
price / "FREE"
[name](xsoar.pan.dev link)

Pack Contents

BuildSlackBlocksFromIndex Script - calculate the new packs from the last run and build the corresponding Slack message.
NewPacksNotifier Playbook - The playbook maintains the last run times of the script and executes it. Recommended to configure a job to run this playbook.

Integrations Used

Slack V2

Automations

Name	Description
BuildSlackBlocksFromIndex	Extracts the index.zip and filters new packs since the last run. Builds the slack message for new packs.

Playbooks

Name	Description
NewPacksNotifier	Send updates on new released packs to slack channel

Automations

Name	Description
BuildSlackBlocksFromIndex	Extracts the index.zip and filters new packs since the last run. Builds the slack message for new packs.

Playbooks

Name	Description
NewPacksNotifier	Send updates on new released packs to slack channel

Required Content Packs (2)

Pack Name	Pack By
Base	By: Cortex XSOAR
Common Scripts	By: Cortex XSOAR

Optional Content Packs (0)

Pack Name	Pack By

All level dependencies (3)

Pack Name	Pack By
Cortex REST API	By: Cortex XSOAR
Base	By: Cortex XSOAR
Common Scripts	By: Cortex XSOAR

PUBLISHER

XSOAR Lab

PLATFORMS

Cortex XSOARCortex XSIAM

INFO

Supported By	Community
Created	May 12, 2021
Last Release	October 29, 2024

DISCLAIMER

Content packs are licensed by the Publisher identified above and subject to the Publisher’s own licensing terms. Palo Alto Networks is not liable for and does not warrant or support any content pack produced by a third-party Publisher, whether or not such packs are designated as “Palo Alto Networks-certified” or otherwise. For more information, see the Marketplace documentation.