Cortex XSOAR Platform Content Repository is a collection of security automation and orchestration resources maintained by Palo Alto Networks (formerly Demisto). The repository serves as a centralized hub for security operations content that enables organizations to automate incident response workflows and security processes. The platform includes pre-built playbooks that define automated response procedures for various security scenarios and incident types. These playbooks guide security teams through standardized investigation and remediation steps, reducing manual effort and response times. The repository contains automation scripts that perform specific security tasks such as data enrichment, threat analysis, and system integrations. These scripts can be executed as part of larger workflows or used independently to automate routine security operations tasks. Report templates are provided to standardize documentation and communication of security incidents, investigations, and operational metrics. These templates help maintain consistency in security reporting across different teams and incidents. The content repository supports integration with various security tools and platforms through connectors and APIs, enabling data sharing and coordinated responses across the security technology stack. Content can be customized and extended to meet specific organizational requirements and security processes.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
An open-source, drag-and-drop security workflow builder with integrated case management for automating security workflows and tackling alert fatigue.
Request Tracker for Incident Response (RTIR) is a tool for incident response teams to manage incident reports, correlate data, and facilitate communication.
A community-driven repository and development framework for creating custom automation activities within the Ayehu NG IT orchestration platform.
Shuffle is a platform for automating security workflows with confidence, offering templates, collaboration tools, and a large app library.
Incident response and case management solution for efficient incident response and management.
Catalyst is a SOAR system that automates alert handling and incident response processes, adapting to your workflows and being open source.
Fast Intercept is a security automation platform that empowers users to maximize their existing security products and automate routine tasks.
SOARCA is an open-source SOAR platform that automates security incident response workflows using standardized CACAOv2 playbooks and multiple integration interfaces.
Cortex XSOAR is a comprehensive SOAR platform that automates and standardizes security processes for faster response times and increased team productivity.
PINNED

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.