Cortex XDR Discussions
Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all PANW products in one place, telling the full story of what actually happened in seconds and allows seamless response.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Cortex XDR Discussions
Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all PANW products in one place, telling the full story of what actually happened in seconds and allows seamless response.
About Cortex XDR Discussions

Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all PANW products in one place, telling the full story of what actually happened in seconds and allows seamless response.

Please note: All postings in LIVEcommunity are visible to other users; please keep your network secure by refraining from posting live IP address’s or domain names here. Contact your Customer Success team for network-specific questions.

Discussions

Welcome to the Cortex XDR Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 750 Views
  • 0 replies
  • 2 Likes

Cortex XDR linux memory usage

Hello ,

 

Can someone please help me to understand the Cortex XDR logs for memory usage by cortex XDR service.

 

below are the consumption details in logs.

 

"trapsd_memory_private_usage": 606146560,
 "trapsd_memory_working_set": 4232118272

which memo

...

Resolved! How to retrieve an incident related file

Hi,

I want to download an incident related files in Cortex XDR, but one of them is already quarantined so when I try to retrieve it nothing happens since it's not in the original location anymore. Is there any way to download it without restoring it

...

Upgrading from Cortex XDR prevent to XDR pro

Hi All,

 

Finally we will be upgrading our Cortex xdr prevent to the pro version. Though we would be getting professional services support on this, I need to understand the entire project plan for this Can anyone help me understand as I would be leadin

...

AsifSid by L2 Linker
  • 6855 Views
  • 3 replies
  • 0 Likes

Resolved! IOC Upload through API - Security Level Advanced

Hello dear community, 

 

my ps script is ready to upload IOCs with least privilege. 

But I want to know, what kind of security risks we have if we don't use the Advanced security level? 

Has anybody of you a ps snippet where the api key is hased like

...

RFeyertag by L4 Transporter
  • 2150 Views
  • 2 replies
  • 0 Likes

Cortex XDR XQL query

Hi Community,

 

We have multiple Palo Alto firewalls configured in Cortex XDR. How can we check the number of firewalls currently logging into Cortex XDR? Additionally, how can we verify the names and IP addresses of the configured firewalls using a

...

CrowdStrike XDR Use cases with Pala Alto Cortex

Hi Team,

 

Can you please suggest a few case studies where CrowdStrike XDR is integrated with Cortex SOAR and what were the areas and use cases that were implemented and helped the customer?

We wanted to present this to a management that already has

...

AYadav45 by L0 Member
  • 938 Views
  • 1 replies
  • 0 Likes

Cortex XDR Periodic Endpoint Scanning schedule

We have a new compliance requirement to  Perform periodic scans of the system at least every 72 hours and real-time scans of files.  We currently have the schedule set to scan weekly.  But I do not see the option to scan more frequently.  Is there a

...

Resolved! XDR Prevent to Pro

Does anyone even use Prevent anymore besides us? 

 

Our budget's been approved to hopefully upgrade our license structure to Pro during Q1 of next year. Does anyone have any recommendations / tips / suggestions or whatnot to make this migration a su

...

CraigV123 by L3 Networker
  • 1497 Views
  • 2 replies
  • 0 Likes
  • 2281 Posts
  • 86 Subscriptions
Top Solution Authors
Top Liked Authors