- Access exclusive content
- Connect with peers
- Share your expertise
- Find support resources
Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all PANW products in one place, telling the full story of what actually happened in seconds and allows seamless response.
Please note: All postings in LIVEcommunity are visible to other users; please keep your network secure by refraining from posting live IP address’s or domain names here. Contact your Customer Success team for network-specific questions.
Hello ,
Noticed in operational status Endpoint whose agent version is not upgraded mentioning status as protected ,unprotected & unprotected ,
After seeing operational status data came across 6 unique issue in servers .
They are as follows:
1.
"Xd
Hello,
We noticed that the new Compliance dashboard has been added in the XDR console, but we don't see any details. What is this dashboard related to and from where it is fetching the data.
Hi All,
We have a Broker VM set up in our environment, and we only want the agents to communicate with the tenants through the Broker. However, we are seeing few endpoints talking to the Tenant directly over the internet.
Although "proxy" is specifi
Facing an issue with connection to Cortex Data Lake,
Firewalls are connected to CDL, but are unable to see the logs when the device is on the hub,
looks firewall is sending the logs but can't see them on the explorer page,
In addition, on the HUB, we
...
Facing issue connection to Cortex Data Lake,
Firewalls are connected to CDL, but are unable to see the logs when the device is on the hub,
looks firewall is sending the logs but can't see them on the explorer page,
In addition, on the HUB, we see the
...
How can IOCs be blocked on XDR so we don't observe alerts or incidents related to it at all?
When putting the hash of the IOC in the block list through the action centre it still triggers incidents and alerts.
Is there any other way other than using
...
Hi,
i have a question that i can not fine answer on the documentation on the Credential Gathering Protection module in the malware profile,
is this apply on web browser cache too or just system credential?
thanks for any helps.
Hi,
I was playing around with the live terminal with the permission of accessing a colleagues computer. I connected fine and created a file using the terminal on their Desktop. But I'm not sure how to trace this action. In the Action Center, all I ca
...
hello.
Please tell me about the alerts for CortexXDR.
What criteria are used to determine when an alert is included in an incident and when it is not included in an incident?
And are alerts that are not included in incidents not "threats"?
Hello All,
Is there any recommended configurations for auto upgrade agent? Do we need to disable the agent tampering when applying these changes.
Also is there anyone having observations regarding failed system while upgrade do they revert back t
...
Hi everyone,
Smartscore feature in cortex xdr enables an automatic scoring of the incidents using ML driven techniques. So, is there any specific standards in scores like below that specific score the risk of that incident can be considered as high
...
Hello Palo Alto Community,
Our organization is relatively new when it comes to Cortex XDR, though, so far, the product is doing well for us.
Since Cortex XDR has a 9-month period before it becomes EOL, we're looking at the "auto upgrade" feature to ea
...
Hello,
While performing a malware analysis on Cortex XDR, Wildfire has detected a file on the computer as possible malware. The file has also been analyzed in other intelligence tools and has not been detected as malicious, the only tool that detects
...
Hello dear community!
is there a way to merge the german and english variants in XQL? The action_evtlog_message is sometimes german and more often english. But how do I get the results from both in one
//Account Locked https://github.com/busteri
...User | Likes Count |
---|---|
9 | |
4 | |
3 | |
3 | |
3 |