Hi Everyone:
Does anyone know where I can find Behavioral Threat Protection (BTP) rules?
For example, a behavioral threat is detected (rule: pp.epm_for_malware_behavior_j01)
or Behavior threat detected (rule: bioc.pp.ransom_prevention_final)
What do thes
...
Hi All,
We need to upgrade the cortex agent from version 7.1 to 7.3 via console. My concern is how can we exclude a certain range of endpoints (Suppose we have 5000 endpoints and we want to exclude 800 endpoints) from upgrading.
I have created an end
...
Hello, I regularly reinstall my endpoints. This creates duplicates for me and it's difficult to locate all the duplicates. Is there a query to see all endpoints as duplicates?
Hello.
I can not see any logs in my Cortex Data Lake. Also when i go to Explorer app in Hub it is empty. Firewall Logs is also seem empty( I forward logs to Data Lake with Broker VM from Fortigate). Can anybody explain me this situation?
NOTE: I
...
Hi,
We have been asked to whitelist a specified folder in order to disable any kind of real-time checks and analysis made by Cortex XDR.
So, we added the aforementioned folder in the allow lists of "Portable Executable and DLL Examination" and "Behav
...
I'm not able to run the uninstaller , showing you don't have permission to open the application
Anyone had the same issue?
Mac version latest bigsur
Exported wf_verdicts.db from an endpoint to validate local verdicts. Is there any reference for return codes and their meanings?
example:
"value": {
"verdict": 3,
"lruData": {
"lastUsed": "1613061210",
"index": "65945"
the Cortex install fails on the systems which already has Traps (previous EPP)
I have tried this command (below) which was recommended by Palo Alto, was working previously for few systems, but isn't the same now
msiexec /i \\fps01\Users\rinesh.nanu.2\
...
I am having an issue with an installation of XDR on Linux Mint 20.
I found this post with no resolution and one of the comments from @MartinSauer suggests someone else was seeing the same issue.
LIVEcommunity - ERROR:14090086:SSL routines: SSL3_GET_
...
Is there a way to set the system (with cookies enabled, or not) to default to the Incidents Page when first loading? IOW instead of going to the default dashboard have it load the Investigations/Incidents section as default.
Also, when going to to th
...
Is there a way to do a full export of Host Insights, without having to go into each sub category and performing an individual export?
When configuring the Broker VM Pathfinder settings, it requires a domain id. Is there a method to have that password change on the Pathfinder configuration automatically when the userid pwd changes?
Hello Everyone,
Does anyone know where I find more information about this bug: CPATR-10685? We reported an issue where if the malware scan is running a dll cannot be loaded twice because Cortex XDR will block it and were given this bug number, but I
...
hi,
Some of the users of Cloud2Model are resporting that Cortex XDR is blocking the installer "Cloud2Model Manager 1.005 x64 setup.exe" with this Cortex XDR code: c0400055. This is a legitimate application and the installer is signed with a EV code ce
...
Hello,
We installed the agent on different devices. But we have noted that there are high levels of memory. In some devices, we see 180 MB. But in other, the memory is above 300 MB (especially VDI). Is this a normal situation? Or are there specific c
...
