Cortext Modifying App Java Threads Without Warning

Cortex is currently messing with a java app at a customer site.

We have a tomcat-based java app that we take to market. Cortex is currently messing with it. Cortex on, our app has issues. Cortex off, our app runs fine. Copy the entire folder and ru

Cortex Prevention Profiles

Hi Team,

Customers found a few of the security modules disabled by default and they wish to enable the modules.
- Below are the modules that the customer wishes to enable for the endpoints.
“Agent Certificates”, “Data Generation Providers”, “PowerShell

Endpoint is isolated

Basically I have a laptop loan from a school for the fall term, I downloaded a game which was counter strike source which I owned to keep me busy during breaks. Cortex basically told me it was a “Virus” and then ended my internet connection, Now I ca

XQL help to detect when a process is stop or killed and by whom

Hello community,

I'm trying to create a XQL Query to detect whenever a user is stopping a particular service (via services.msc, cmd, powershell, WMI or any other way), but I can not do it.

I need to detect the user that send the stop service comm

Create custom widget to display data from Jamf

Hi Everyone,

I'm wondering if it's possible to fetch data from JamfPro MDM solution for example user_name, ip address and mac details and add it as a custom widget to the cortex dashboard. If this is possible kindly guide me on how to achieve this.


#ap

Upgrade Tenant 3.x to 4.x question

Hi Expert ,

I would like to know or anyone have experience about upgrade tenant cortex xdr  from 3.x to 4.x if older we have just prevent lic and then have to upgrade lic to pro can upgrade existing 3.x to 4.x ?

Thank you

How endpoint devices, XDR Broker VM and XSIAM Cloud communicate in case of HA configuration

Hi Team,

I'd like to know how endpoint devices, XDR Broker VM and XSIAM Cloud communicate in case of HA configuration.

I guess HA configuration may require a virtual IP address to receive logs from endpoint devices and to send the logs to XSIAM C

Cortex not allowing specific Bluetooth devices to connect

We have been testing device blocking using Cortex. We have noticed that some Bluetooth devices (Apple Air Pods for instance) are not being allowed to connect/pair. I do not see a setting specifically for these types of devices, and I have been unsucc

Cortex XDR Agent setup

Hi folks

do you have idea from where i can download Cortex XDR Agent 8.8.1 MSI file, we wanna to run a batch script for uninstall it

PS: our license its expired and we cannot get it from the XDR portal

Cortex XQL "Let" replacement

Hi, 

I'm wondering if anybody knows a method, I can use to join multiple queries within the same XQL query. 

I have 3 separate queries which return a count of vulnerabilities for each region of logs. How do i merge these 3 queries to return a table