Cortex XDR Discussions
Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all PANW products in one place, telling the full story of what actually happened in seconds and allows seamless response.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Cortex XDR Discussions
Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all PANW products in one place, telling the full story of what actually happened in seconds and allows seamless response.
About Cortex XDR Discussions

Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all PANW products in one place, telling the full story of what actually happened in seconds and allows seamless response.

Please note: All postings in LIVEcommunity are visible to other users; please keep your network secure by refraining from posting live IP address’s or domain names here. Contact your Customer Success team for network-specific questions.

Discussions

How to get XDR Wildfire API key?

As you can see that there is no data in wildfire api key. So where is it because I want to integrate my XDR Wildfire to other products. So How can i find it or How can I generate it? Please explain me well.

JayeshParmar_0-1705127299496.png
JayeshParmar_1-1705127321137.png

XDR BIOC Rules

Hi All,

 

We have a few Palo Alto BIOCs that are disabled in our console, does Palo alto disables those rules by themselves if yes where can we find more details about it like why it was disabled in the first place.

 

Regards,

Shahwaz

path exclusion for scans do not work

Hello to all,

 

I am experiencing a problem on a machine where scans are pushing the overall CPU load to 100% for several minutes to several hours and only slowly decreasing.

This causes problems for the use of the Syngo.Via software installed on thi

...

Broker VM for Cortex XDR

Hi,

As a part of Cortex XDR , I would like to know some benefits of Broker VM

 I have gone through some of the docs and it looks like a Separate image that need to be installed. So,

1. Do we have to install it on every endpoint (Ex: 10,000 servers) that

...

Track down bad API key

I have an issue with CortexXDR.  I get errors in the logs every minute from something trying to use an API key that was deleted when one of our security guys left.  The source IP for it is our external NAT address that all our internal to external tr

...

XDR API for Policy Management

Is there an API in XDR for Policy Management?

I'm trying to get the list of policies, profiles and their rules.

There is /public_api/v1/endpoints/get_policy (Get Policy • Cortex XDR REST API • Reader • Palo Alto Networks documentation portal)

Howeve

...

RishitShah_0-1703167831594.png

Resolved! retrieve RDP informations

Hello and sorry for my bad english,

 

I want to retrieve informations about RDP connection to computers. 

When computer A connect to computer B with RDP, on computer B (destination) windows log this event :
Event Security with ID 4624 et logon type 10

H

...

LECORRE by L0 Member
  • 954 Views
  • 2 replies
  • 0 Likes
  • 1897 Posts
  • 78 Subscriptions
Top Solution Authors
Top Liked Authors