Take BAckup logs for 30 days
regarding our log retention policy on Cortex. Since we have a 30-day log retention period, is it possible to download the logs for the past 30 days from the console each month as a backup?
Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all PANW products in one place, telling the full story of what actually happened in seconds and allows seamless response.
Please note: All postings in LIVEcommunity are visible to other users; please keep your network secure by refraining from posting live IP address’s or domain names here. Contact your Customer Success team for network-specific questions.
regarding our log retention policy on Cortex. Since we have a 30-day log retention period, is it possible to download the logs for the past 30 days from the console each month as a backup?
Hello Team,
Please help us to address below query.
-> Where we can find the details of all use cases in the XDR console.
Regards,
Ramyashree
Hello
We are migrating our existing XDR tenant due to region issue. We have got our new tenant and Basic configurations are done.
I have a question regarding the BrokerVM. Do we need to create new broker VM for the new tenant or we can use our existi
Hello,
I am curious as to what data Cortex XDR pulls to put together a software inventory list. I am trying to create a script to uninstall a program on an endpoint and the last resort method the script does is deleting all program files (both in Pro
...
We are in the process of rolling out Cortex XDR to our organization. I saw the new BItlocker status screen/policies.
I'm struggling to understand if I can enable Bitlocker with this policy, or if this is just a way to ensure the devices are complaint
Hello ,
Can someone please help me to understand the Cortex XDR logs for memory usage by cortex XDR service.
below are the consumption details in logs.
"trapsd_memory_private_usage": 606146560,
"trapsd_memory_working_set": 4232118272
which memo
...
Hi,
I want to download an incident related files in Cortex XDR, but one of them is already quarantined so when I try to retrieve it nothing happens since it's not in the original location anymore. Is there any way to download it without restoring it
...
How I detect VPN extensions in browser ( like, EDGE, Chrome, Firefox, Brave)? with XQL query.
Hi All,
Finally we will be upgrading our Cortex xdr prevent to the pro version. Though we would be getting professional services support on this, I need to understand the entire project plan for this Can anyone help me understand as I would be leadin
...
Hello dear community,
my ps script is ready to upload IOCs with least privilege.
But I want to know, what kind of security risks we have if we don't use the Advanced security level?
Has anybody of you a ps snippet where the api key is hased like
...
I want to search a specific process name xyz.exe, or xyz.dll which is already running or previously executed.
How can I do it both in single search?
Cortex XDR Endpoint Protection
Hi Community,
We have multiple Palo Alto firewalls configured in Cortex XDR. How can we check the number of firewalls currently logging into Cortex XDR? Additionally, how can we verify the names and IP addresses of the configured firewalls using a
...
Hi Team,
Can you please suggest a few case studies where CrowdStrike XDR is integrated with Cortex SOAR and what were the areas and use cases that were implemented and helped the customer?
We wanted to present this to a management that already has
...
We have a new compliance requirement to Perform periodic scans of the system at least every 72 hours and real-time scans of files. We currently have the schedule set to scan weekly. But I do not see the option to scan more frequently. Is there a
...
Hi Everyone,
What is the difference between the Cortec XDR Pro and Prevent licenses? Does Prevent collect data? What is the difference between the data collected by the two licenses? Thank you.
Subject | Likes |
---|---|
3 Likes | |
2 Likes | |
2 Likes | |
1 Like | |
1 Like |