Resolved! Blocking PowerShell While Allowing Certain Powershell Scripts

Hi, good day!

I need some help with configuring PowerShell restrictions in Cortex XDR.

I'm currently facing an issue where Cortex XDR has detected a PowerShell script executed from a user endpoint. After investigation, we confirmed that this script

Resolved! [Mac & Linux ] Quarantined Files location

Hi, do you know the default location for the Quarantined Files location  for Mac and Linux ?

i know the local quarantine folder for Win is  (%PROGRAMDATA%\Cyvera\Quarantine   ,but what about Mac and Linux ?

Cortex XDR 

Resolved! Linux Agent password protection

Hi,

i know that Linux Agent Tampering protection is not support yet , however what is the possible why to secure the agent?

Cortex XDR 

Resolved! Cortex XDR folder taking up space

Hello Cortex Team,

On one of our server endpoint, the Dump folder located on the path : ProgramData\Cyvera\LocalSystem\Dump is taking a lot of space.

We already tried to clear the database of said agent, no difference. (see screenshot before and

Resolved! Connect New XDR Tenant with Existing Broker VM

Hello

We are migrating our existing XDR tenant due to region issue. We have got our new tenant and Basic configurations are done. 
I have a question regarding the BrokerVM. Do we need to create new broker VM for the new tenant or we can use our existi

Resolved! File Integrity Monitoring FIM using Auditbeat module

Hello,

Looking to set up FIM using the Cortex XDR agent and from what I have found so far, it seems unsupported. Has anyone set up FIM using any method?

The only possible option I have found so far is maybe using an auditbeat with the FIM module:

Resolved! Need help - BIOC / Script / XQL?

Hey everyone. I need some assistance in looking at this logically.

We have an identified PuP in our environment that is persistent. It creates a scheduled task and if you don't remove that, your PuP that you deleted will be back in no time.

Is th