Cortex XDR Discussions
Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all PANW products in one place, telling the full story of what actually happened in seconds and allows seamless response.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Cortex XDR Discussions
Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all PANW products in one place, telling the full story of what actually happened in seconds and allows seamless response.
About Cortex XDR Discussions

Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all PANW products in one place, telling the full story of what actually happened in seconds and allows seamless response.

Please note: All postings in LIVEcommunity are visible to other users; please keep your network secure by refraining from posting live IP address’s or domain names here. Contact your Customer Success team for network-specific questions.

Discussions

Resolved! cortexuser in Linux Agent

Hi Community,

 

Anybody has any information on the user 'cortexuser' created while installing cortex in Redhat Linux ?, What this user used for and which folders are owned by this user 

 

Thanks in advance

Resolved! Cortex XDR Windows Event Collector

Hello!

I set up Windows Event Collector and data is coming to XDR. But i want to see data which come from Windows Event collector. In which category this data located? How can i search Windows Event collector data in XQL?

 

THANKS!

XDR Global BIOC rules

Hello.

If Restrictions profile for Windows is default then they don`t directly affect windows endpoints. We must edit and and apply them for getting protection in endpoints. But in Linux it is not same. Even if Restriction profile is default, XDR can

...

Cortex XDR Broker VM (proxy server)

Hello.

In XDR Broker VM i enable proxy server and configure as follows:

Type:HTTP

Address: 192.168.6.167

Port: 8080

 

But it is not work and in configuration status i see "in progress" even through 3-4 hours.

I want to know if is there anybody who  configur

...

Resolved! Uninstall agent rom MacOS

Hello,

 

We want to uninstall an agent from MacOS, but we do not have the admin password. And we can't reset the password because the tenant was deleted it. So the agent does not have administration from web console.

 

I try with "Passowrd1", it doesn't

...

iscott by L2 Linker
  • 5401 Views
  • 2 replies
  • 0 Likes

Cortex XDR Windows Event Collector

Hello!

My question is about Windows Event Collector.

Why we need Windows Event Collector? Don't XDR Agents collects all needed information from Windows endpoints? Can Windows Event Collector give us useful information than Agents?

Cortex XDR files modified

We have some systems that are locked-down with software that prevents modifications to files/directories, and I'm wondering what are the paths that Cortex needs to be able to modify? For example, when it downloads the latest definitions, what does it

...

  • 1846 Posts
  • 78 Subscriptions
This widget could not be displayed.
Top Liked Authors