Cortex XDR Discussions
Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all PANW products in one place, telling the full story of what actually happened in seconds and allows seamless response.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
Cortex XDR Discussions
Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all PANW products in one place, telling the full story of what actually happened in seconds and allows seamless response.
About Cortex XDR Discussions

Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all PANW products in one place, telling the full story of what actually happened in seconds and allows seamless response.

Please note: All postings in LIVEcommunity are visible to other users; please keep your network secure by refraining from posting live IP address’s or domain names here. Contact your Customer Success team for network-specific questions.

Discussions

Resolved! XDR Resource IPs for Connectivity to XDR Server

Dear experts, 

 

From the following resource table, two json tables for GCP are provided (one for Google subnet and another for Google IP range associated with my region)

 

Question:

For the connectivity, do we need to allow all GCP IP range (in the

...

SeanDeHarris_0-1695019619119.png

Resolved! Agent v.7.9 Removed???

Hello experts,

 

From the matrix, v7.9 supposed to be the last version to support Win7, just found out 7.9 has been removed from the Agent installation while creating an installer. 

 

Do we need to "downgrade"/use much older v5.0 instead???  

 

 

 

...

SeanDeHarris_0-1694489642033.png
SeanDeHarris_1-1694489727014.png

Resolved! Hashes of the attachment from the o365 log

Dear community,


I've been evaluating the benefits of ingesting o365 logs so far. Seeking those who have the mentioned logs ingested into Cortex XDR -

does Cortex XDR review and raise alert using the hashes of the attachment if the attachment is a mal

...

File scanning.

Hey All, question for you.

 

What process does an XDR agent follow when a user opens a simple .pdf or .docx file? I am trying to find something basic to explain this to one of our Executive Managers who is concerned that the agent is causing common a

...

Alert to Incident

Hey dear community, 

 

do I have the chance to elevate a alert to an incident? I tried allready to set the severity of an alert to critical, but nothing happened. This alert doesn't get an Incident ID. 

 

I thought this was possible in the past, but

...

RFeyertag by L4 Transporter
  • 388 Views
  • 2 replies
  • 0 Likes

Resolved! Upgrade agent fails

Hi team

I am trying to update an agent but it shows me "the installer has timed out" on the logs, I checked upgrades logs and I see the next message "Distribution ID is missing from installation package" I thought that it could be an issue related to

...

MarcoMJ by L1 Bithead
  • 1603 Views
  • 5 replies
  • 0 Likes

Resolved! Cortex XDR Incident integration splunk tool

We are currently integrating the Cortex XDR incident logs with the Splunk tool. Currently, the incident logs are visible in the Splunk tool, but certain essential fields required for conducting an XDR log investigation are not available in the existi

...

Resolved! Cortex XDR: Bitlocker Monitoring

Hello everyone,

 

We are looking at using XDR to monitor Bitlocker status on Windows machines. On the 'Disk Encryption Visibility' page, we can see the Encryption status, but there is no way to filter on 'Unencrypted' drives.

 

- Does anyone know of an X

...

PBurns_0-1626116899345.png
PBurns by L2 Linker
  • 3672 Views
  • 3 replies
  • 0 Likes
  • 1680 Posts
  • 78 Subscriptions
Top Liked Authors