Cortex XDR Discussions
Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all PANW products in one place, telling the full story of what actually happened in seconds and allows seamless response.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Cortex XDR Discussions
Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all PANW products in one place, telling the full story of what actually happened in seconds and allows seamless response.
About Cortex XDR Discussions

Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all PANW products in one place, telling the full story of what actually happened in seconds and allows seamless response.

Please note: All postings in LIVEcommunity are visible to other users; please keep your network secure by refraining from posting live IP address’s or domain names here. Contact your Customer Success team for network-specific questions.

Discussions

Resolved! Exclusion criteria import

Hi all.

 

Does anyone know of a way - or a work around for the following situation.

 

I have a long list (about 700) IPs that I want to create an alert exclusion from. These are external scanners that our firewall blocks and we get a large amount of

...

Resolved! Ingest DHCP logs using XDR collector

Hi,

 

I am having issues with ingesting DHCP log from our DCs. We are using the XDR Collector app. I suspect that the issue is with the filebeat.yml file but cannot figure out what the problem is. I have tried and followed the guide below and copy-pa

...

Cortex XDR agents upgrade

Hello everybody,

 

Is Cortex XDR agents auto upgrade recommended? We enabled agent auto upgrade at the moment. But we worry this can cause some problems in future.  Can anybody give suggestions about this situation?

 

Thanks.

[Network location] - too long to check location

Hi community,

 

Does somebody is using Cortex XDR - Network Localtion (from agent settings profile).

 

My problem is that the network location is too long, specifically when users comme back to our office from their own internet connection, internal

...

Cortex XDR not detecting malicious files

Hi ,
Why Cortex XDR is not detecting malicious files which are present in system.
for testing purpose I have downloaded a test malware also but it is not reflected after the malware scan.Can anyone please give clarity on this.
Does Cortex detects malici

...

Block logs to Data Lake from specific endpoint

Hello,

 

I have a case where logs are delivered to Data Lake from endpoint were we're unable to uninstall Cortex XDR agent. We also can't connect to this endpoint to take manual actions to stop receiving logs from it.

Is there any way to block/preven

...

tntrust by L1 Bithead
  • 899 Views
  • 4 replies
  • 0 Likes
Top Liked Authors