Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all PANW products in one place, telling the full story of what actually happened in seconds and allows seamless response.
Please note: All postings in LIVEcommunity are visible to other users; please keep your network secure by refraining from posting live IP address’s or domain names here. Contact your Customer Success team for network-specific questions.
Hi,
Good day!
Can you please tell me if we have a chance to check the application and websites which we have used in the recent time in the endpoint using the cortex XDR console?
Hi,
We're using the autoupgrade feature in the Agent Installation profile at the moment to upgrade our agents to the latest 7.9 client. We're looking at moving up to version 8 shortly, I've upgraded a group of test machines and all looks good. We
...
we have a new requirement we need to block Excel macros for specific groups of user anyone know how to block
Software needs to be blocked for end users, but the hash value changes, or if it's installed in a different location, the user can still access the software. Can anyone offer a solution?
Hello, in our environment there are users across multiple departments reporting that Cortex XDR RTP periodically stops itself due to an "adaptive policy", causing them to fail hipchecks and have their network access restricted. These users are primar
...
Hi,
We are seeing a lot of events from CORTEX "A Successful login from TOR". Anyone else with this problem?
Seems to be a bug.
XDR Analytics BIOC
XDR BIOC
PAN NGFW
XDR IOC
XDR Analytics
XDR Managed Threat Hunting
XDR Agent
Hello, Everyone!
I would like to know how this can be implemented - I want to block suspicious remote control applications (BIOC) Cortex XDR.
I want a reply from the Palo Alto official. Thanks.
Hi Guys,
In the Artifacts section we are not able to see the VT Score . For this we are manually copying the IP's , Hashes & viewing in the Virustotal console.
Got to know we need to configure the API key but the concern is what data does Cortex XDR su
Hello everyone,
I try to deploy Cortex XDR on all my computers with the help of GPO.
For x64 OS, it goes pretty well, for x86 OS I have an abnormal behavior, on several PCs, it does not install.
I have attached some logs, do you have an idea?
I'm
...
Hi everyone,
Can the user initiate malware scan from the cortex xdr agent console which is installed on the endpoint?
Regards
Hello ,
Is it possible to do user validity via VPN/RDP through Cortex XDR.
Or to detect user validity.
Hello,
How long does it take for endpoints to go to failed/canceled state from in progress state when malware scan ran on endpoints?
We use a cluster of Proxmox servers which host a number of LXC containers and KVM/QEMU VMs. Our central IT department requires use to install the Cortex XDR agent on all the devices. I have a Debian Bookworm server with the cortex agent installed whi
...
Hello,
My organization utilizes graylog, and we host it on prem. Is there a way to route/tunnel the XDR tenant into our internal network? I am aware of the BrokerVM, but I do not know if that plays a role. I know the BrokerVM has a syslog app, but
...| Subject | Likes |
|---|---|
| 3 Likes | |
| 2 Likes | |
| 2 Likes | |
| 1 Like | |
| 1 Like |
