Cortex XDR Discussions
Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all PANW products in one place, telling the full story of what actually happened in seconds and allows seamless response.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Cortex XDR Discussions
Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all PANW products in one place, telling the full story of what actually happened in seconds and allows seamless response.
About Cortex XDR Discussions

Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all PANW products in one place, telling the full story of what actually happened in seconds and allows seamless response.

Please note: All postings in LIVEcommunity are visible to other users; please keep your network secure by refraining from posting live IP address’s or domain names here. Contact your Customer Success team for network-specific questions.

Discussions

Welcome to the Cortex XDR Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating: Rules and Best Practices Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussions are encouraged; disrespectful or inflammatory comments are not. Stay On-Topic: This board is d...

JayGolf by Community Team Member
  • 4430 Views
  • 0 replies
  • 3 Likes

Cortex XDR Incidents new field

Hi all, This is my first post here.I had this idea/suggestion that a new field should be added on incidents page. When we deal with multiple incidents, a necessary field will be needed for quicker decision making for an analyst.So I wanted to suggest for field called "status" wherein the action taken on the consisted alerts is summarized.As the ...

What is an agent protection password?

I use MacOs and Cortex XDR, and I wanna uninstall the Cortex XDR.Cortex XDR Uninstaller.app said a following sentence:[ Enter agent protection password ( set by the administrator ) ] I didn't set the agent protection password.How can I uninstall the Cortex XDR??? MacOs Catalina 10.15.5Cortex XDR Version 7.1.1 Please help me.

nnEiji by L0 Member
  • 4594 Views
  • 2 replies
  • 0 Likes

Resolved! Cortex XDR Pro - Latest Agent 7.1.2 (Release Notes)

Hello, I have just downloaded and installed on 10 x machines for testing Cortex XDR Pro agent version 7.1.2 Been "hunting" about Paloalto portals for release notes and found nothing as yet relating to this latest agent version, have i missed them? Can someone please point me in the correct direction, thanks? Kind regards,Graeme

Coretex XDR alert/incidents for wildfire test file

Hi Community, Does the wildfire test file generate a alert/incident which can be seen XRD console ?I have a XDR agent connected to cloud. The wildfire test sample in prevented and i can see it in events of XDR agent. I cannot see this in XDR console neither in incident nor alert table. Does this expected behaviour ?.Also i noticed that one of th...

Host Firewall Logs

Hi Team, We have Host firewall profile enabled to block access to some of the IP address.How can we check these logs, if any users tried to access these blocked ip addresses and at what time they tried so. please advise.

problem starting the pc

I have been having problems with some users, they report that their computer takes 30 to 40 minutes to start when they have the cortex agent installed and when they uninstall it it starts normally. It is worth mentioning that the agents are currently in report mode, has anyone had a similar problem? can support me.

xdr agent download 22MB with each check-in

Dear community, I hope you all stay safe and doing great. I noticed that per each 5-minutes check-in the cortex XDR agents they will get 22MB back from the cloud.I think this is considerable amount of data if there´s no policy/content update to be sent from Cortex XDR cloud to the agents. This is happening for each agent and it´s impacting the n...

Carracido by L4 Transporter
  • 5595 Views
  • 3 replies
  • 0 Likes

Resolved! Cortex-XDR hash verdict

Hi Team, Our cyber security department has shared few hashes and asked to check the these hashes verdict? How to check a hash is malware or benign? how to perform this on cortex xdr portal?

Scripts/ Download File size limit

I am trying to get a live memory dump from the Endpoints with Cortex XDR agents installed. through a live terminal and the the file explorer, we are limited to 200 MB downloads from the remote host. Is there a way to expand this file size limit or how are others getting live memory dumps from their endpoints with cortex XDR installed? (No XSOAR ...

  • 2623 Posts
  • 98 Subscriptions
Top Solution Authors
Top Liked Authors