https://live.paloaltonetworks.com/t5/cortex-xdr-discussions/file-and-folders-collector/m-p/530097#M3575 <P>Hi Ulkar,&nbsp;</P> <P>&nbsp;</P> <P>What this collector is gives us ?</P> <P>Actually this is directly related what you want to collect and analyses. This collector might read, application logs or network device logs, OS logs etc. changes based on your scenario.&nbsp;</P> <P>You cannot view remotely formats but you can filter remotely what you want to collect.&nbsp;</P> <P>You can use wildcard in "Include" part. (like *.json)</P> <P>&nbsp;</P> <P>Product and Vendor is generally helping for automatic parsing or keeping data in specific dataset.&nbsp;</P> <P>If you write Vendor = X and Product = Y&nbsp;</P> <P>Your collected data will be in X_Y_raw dataset.</P> <P>&nbsp;</P> <P>I hope that helps</P> Tue, 07 Feb 2023 10:44:20 GMT etugriceri 2023-02-07T10:44:20Z https://live.paloaltonetworks.com/t5/cortex-xdr-discussions/file-and-folders-collector/m-p/529567#M3530 <P>Hi community,</P> <P>I have questions about setting up file and folder collector.I do not understand what the inclusion of logs of this collector gives us.How can I view all files of any formats that are in the folder?What is the vendor and product responsible for?I ask you to bring an example, in the official guide it is written very briefly</P> <P><LI-PRODUCT title="Cortex XDR" id="Cortex_XDR"></LI-PRODUCT>&nbsp;&nbsp;</P> Thu, 02 Feb 2023 05:35:07 GMT https://live.paloaltonetworks.com/t5/cortex-xdr-discussions/file-and-folders-collector/m-p/529567#M3530 Ulkar_Hasanova 2023-02-02T05:35:07Z https://live.paloaltonetworks.com/t5/cortex-xdr-discussions/file-and-folders-collector/m-p/530097#M3575 <P>Hi Ulkar,&nbsp;</P> <P>&nbsp;</P> <P>What this collector is gives us ?</P> <P>Actually this is directly related what you want to collect and analyses. This collector might read, application logs or network device logs, OS logs etc. changes based on your scenario.&nbsp;</P> <P>You cannot view remotely formats but you can filter remotely what you want to collect.&nbsp;</P> <P>You can use wildcard in "Include" part. (like *.json)</P> <P>&nbsp;</P> <P>Product and Vendor is generally helping for automatic parsing or keeping data in specific dataset.&nbsp;</P> <P>If you write Vendor = X and Product = Y&nbsp;</P> <P>Your collected data will be in X_Y_raw dataset.</P> <P>&nbsp;</P> <P>I hope that helps</P> Tue, 07 Feb 2023 10:44:20 GMT https://live.paloaltonetworks.com/t5/cortex-xdr-discussions/file-and-folders-collector/m-p/530097#M3575 etugriceri 2023-02-07T10:44:20Z