Cortex XDR Discussions

Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all PANW products in one place, telling the full story of what actually happened in seconds and allows seamless response.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Cortex XDR Discussions
Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all PANW products in one place, telling the full story of what actually happened in seconds and allows seamless response.
About Cortex XDR Discussions

Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all PANW products in one place, telling the full story of what actually happened in seconds and allows seamless response.

Please note: All postings in LIVEcommunity are visible to other users; please keep your network secure by refraining from posting live IP address’s or domain names here. Contact your Customer Success team for network-specific questions.

Discussions

Welcome to the Cortex XDR Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 760 Views
  • 0 replies
  • 2 Likes

Syslog Splunk Parsing

Hey everyone, 

 

First time poster. We just rolled out XDR and having some issues getting data into Splunk. The Splunk TA App says it does not support Syslog, but there is loads of documentation for getting agent logs, alerts, management logs sent to S

...

eumbach by L3 Networker
  • 4899 Views
  • 2 replies
  • 0 Likes

Resolved! Using the Command Line in Live Terminal on a Mac

Hi, all.  I tried using Live Terminal for the first time today, and all was going well until I got the the Command Line section.  While connected to a Mac, I got this error message:

 

bash: no job control in this shell The default interactive shell is
...

High Alert wininfo.exe

received alert from Traps regarding malware detection of the maximum system due to file “Wininfo.exe”.

Please find a snapshot of one system and suggest how to fix this. Is there any impact?

 

 

CORTEXXDR

 

WildFire Malware

High

Source:XDR Agent

Category:Malwa

...

Wininfo.jpg

IOC Function

Hi Everyone,

 

Until now, I cant understood a function from IOC in Cortex XDR.

Could please share to me what's a main function IOC XDR?

Because I have tried to create new rules, for block link m.facebook , like a picture.

 

 

But, after that I have tried to

...

MuhammadRusli_0-1629424930850.png

Cortex XDR block to execute Xcode Execution

In some of user cortex XDR agent blocking the Xcode simulator-trampoline program. Its detect as malware and Suspicious executable detected. when we show alert after some time wildfire score display Benign and low confidence so is it safe to allow tha

...

DChavda by L0 Member
  • 3204 Views
  • 1 replies
  • 0 Likes
  • 2284 Posts
  • 86 Subscriptions
Top Solution Authors
Top Liked Authors