Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all PANW products in one place, telling the full story of what actually happened in seconds and allows seamless response.
Please note: All postings in LIVEcommunity are visible to other users; please keep your network secure by refraining from posting live IP address’s or domain names here. Contact your Customer Success team for network-specific questions.
I am attempting to pull in endpoint/incident data using the appropriate API in PowerBI. However, there's a limit of 100 . I tried adding a separate custom column anticipated that my total number of incidents would be let's say "x" value, but that jus
...
Hello Palo Community,
does anybody know why the Apple SoftwareUpdate.exe got blocked by Cortex XDR today
Or has someone else also encountered this Problem?
In the Community section of VirusTotal I discoverd a comment that Palo Alto apperently changed
...
Does anyone here know if Cortex XDR is installed on Windows 10 (20H2) if it would protect Windows Subsystem for Linix (WSL)?
When it comes to excluding legitimate behaviours from BIOC rules, as far as I can see, there are 3 options:
Has anyone come up with a reliable method to report on devices without xdr running on it?
Before I get into my failed script, please allow me to explain what Im attempting to do.
We are looking for windows and Macintosh devices with cortex xdr agent NOT installed. To do this we installed the cortex DHCP log collector. It is reporting its
...
We are using Cortex XDR Prevent
1) I see many places the word 'rules' and 'rule exception' is used , I assume this option or feature is not available in Cortex XDR Prevent as I do not see it in the menus/blades .I guess its a 'Pro' edition feature .
...
Hello all,
I have setup an endpoint group of high profile laptops. I would like the following configured on XDR.
- Prefix all Incident names going to endpoints in that group with "VIP Endpoint [Incident Name] (e.g. VIP Endpoint Wildfire Malware Dete
...
Greetings ,
I am using Cortex XDR Prevent and keen to know how most decisions are made by Cortex XDR about File/process/macro being malicious or not ? So assume there are no Hash exceptions and need to know if below is true :
- First Wildfire cache i
...
Hello,
I would like to know if there's a way to generate a PDF report that contains the full list if rows?
whenever i try to do so i keep getting only 20 rows tops out of a few hundred records, but when i generate the report as CSV i get the full list.
...
Hi all,
Is there some configuration or third-party connector, or some service that can be used to enable exporting to CSV from Cortex XDR Reports? Right now the only option to export a report is through a PDF which is super inconvenient. I attached
...
I know that Malware Scans are not currently available for Linux OS. Just wondering the reason for that, and if there are any future plans to enable malware scans for Linux devices?
Every 10 seconds, it goes offline and rejoins the network. Anyone see anything like this?
Seems to be affecting everything connected form the mac machine(s). Latest version of XDR agent..
Hi
I am not able to view incidents viewed by modules.
So I want specific to see all incidents detected/blocked by Behavioral Threat module.
Anyway to view this
/Jacob
| User | Count |
|---|---|
| 2 | |
| 1 | |
| 1 | |
| 1 | |
| 1 |
| Subject | Likes |
|---|---|
| 2 Likes | |
| 2 Likes | |
| 2 Likes | |
| 2 Likes | |
| 2 Likes |
| User | Likes Count |
|---|---|
| 7 | |
| 5 | |
| 3 | |
| 3 | |
| 3 |
