Query to Search For Password Files in Cortex XDR Pro
Hello community!
Do you know whether it´s possible in Cortext XDR Pro to build a query to Search For Password Files ?
Many thanks!
Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all PANW products in one place, telling the full story of what actually happened in seconds and allows seamless response.
Please note: All postings in LIVEcommunity are visible to other users; please keep your network secure by refraining from posting live IP address’s or domain names here. Contact your Customer Success team for network-specific questions.
Hello community!
Do you know whether it´s possible in Cortext XDR Pro to build a query to Search For Password Files ?
Many thanks!
Hi Community
I need some help in creating an XQL query for a BIOC which detects exploitation attempts for CVE-2021-1675 (printnightmare). So far I have the following two queries:
1. A query that detects incoming connections on port 445
dataset = xd
...
I have an endpoint which was running 7.2.2 without any issues that no longer has a working agent after it received the 7.3.2 upgrade. I have seen references to a "cleaner" tool to remove Cortex XDR where I assume the MSIExec installer is not working
...
Below announcement applicable to cortex XDR/EDR ?
Hi
My experimental machine was hit by BSOD by CVE-2019-0708 even though cortex agent is installed
Does anyone have such a situation?
Hello
Do you konw if this maintanence will affect the endpoints?
Great blog read on Cortex XDR's MITRE performance written by Peter Havens.
MITRE Round 2 Results Solidify Cortex XDR as a Leader in EDR
Join us on May 7 for the “MITRE ATT&CK Round 2: Results Unveiled” webinar for a deep dive into the MITRE APT29 E
...
Cortex XDR (formerly Magnifier) is well suited to stopping Internet of Things (IoT) threats. IoT devices can be exploited to become a point of entry for a network attacker or to launch different kind of attacks like DDoS attacks. Industry researchers
...
AutoFocus complements Cortex XDR (formerly Magnifier). AutoFocus provides contextual threat intelligence to accelerate investigations. Security analysts can look up information about suspicious files, URLs, or IP addresses with AutoFocus. Plus, AutoF
...
Hello, all-
I know I'm a few days late on this. I just wanted to make sure everyone got a chance to see the new features that were released on Sunday. If you haven't had a chance to look, please log in and/or check out the release notes for May 202
...
As a valued member of our Cortex XDR community, we’d greatly appreciate your feedback on the Gartner Peer Insights platform. You do not need to be a Gartner client to provide a review. The first 100 respondents will receive a $25 Visa gift card. Th
...
Hello,
Anyone can help if the cortex XDR have a Function called launch Anti-Malware Protection during boot this will work with Secure Boot
Thanks
Take a sneak peek at Cortex Symphony 2021, the premier summit for security operations. Kevin Smith hosts two days of engaging keynotes, breakouts and technical workshops. Don’t miss out! Register now. https://bit.ly/3rIYrHA
We have deployed a proof of concept of XDR with 30+ agents. As the system is still gathering information, we have been receiving e-mail notifications from the activities its collecting. Some e-mails vary from 100KB to 7MB in size per e-mail. It's at
...
Hello Everyone.
I just want to know where to get to the agent profile. Is that a portal? or an app? Possibly I need to contact someone?
Sorry I am new on this cortex XDR app but I do really appreciate your responses.
Just to provide more context. We
...User | Count |
---|---|
9 | |
6 | |
3 | |
1 | |
1 |
User | Likes Count |
---|---|
5 | |
4 | |
2 | |
2 | |
2 |