Resolved! XQL for highest available install date of KBs / checking hosts for installed win updates

Hello dear community, 

my goal is to see which host has not actual windows kbs installed. I would need the last KB installed information per host. 

Now I need to limit it per host, and not through the whole query result. Do you have an Idea how t

Resolved! A question from the Endpoint Administration Part 2 webinar: Adaptive Policy

What if I want the adaptive policy to never run? Cortex should start up with adaptive_policy disabled

Note: This question was asked during a customer success webinar: Endpoint Administration Part 2

Resolved! A question from the Endpoint Administration Part 2 webinar: Adaptive Policy and Agent

Will the adaptive policy cause the agent to go into a enable/disable loop when enabling/disabling components due to resource usage?

Note: This question was asked during a customer success webinar: Endpoint Administration Part 2

Resolved! A question from the Endpoint Administration Part 2 webinar: Supervisor Password

Uninstall password is configured when the account is set up, is the supervisor password just our cortex password, and only works if the account has the proper permissions?

Resolved! A question from the Endpoint Administration Part 2 webinar: XDR Agent

we have some scenarios where XDR agent services are running and show enabled in endpoints but in XDR console it shows as disconnected. What will be the major workaround for this kind of issue?

Note: This question was asked during a customer success

Resolved! A question from the Endpoint Administration Part 2 webinar: XQL

Is there documentation of the queries for the built-in XQL widgets? I would like to use them as examples for custom XQL widgets for custom dashboards.

Note: This question was asked during a customer success webinar: Endpoint Administration Part 2

Resolved! A question from the Endpoint Administration Part 2 webinar: Linux machines & Kernel Updates

There are some instances of Linux machines that are protected previously and then became unprotected or partially protected. As per checking on them, it was because the kernel version was upgraded to the latest version and is still not listed on the

Resolved! host inventory - Disk Space XQL - bytes conversion not possible because of string - to_number?

Hello dear community, 

how can we get this use case running? I need to know which disk is running lower than 5 GB. 

In my case I have a conversion problem, because the field free_space is a string. How can I convert it to a number, so I can divide

Resolved! The Logic behind Widgets on XDR

Hello , 

Recently we observed that during time period of last 7 days when we use the widget Incidents by source it shows us of a total 7 incidents but when we check manually with the same timeframe it shows us only 6 overall incidents. How does thi

Resolved! XQL Query for incidents/alerts

Hello , 

Is there a way to create XQL query for the details related to incidents or alerts for past 7 days that can be used as a widget . The current widget options do no give us the output we require.

Thanks 

Resolved! Perform Memory Acquisition Using XDR

Hi,

Is it possible to acquire memory using Cortex XDR for digital forensics? We are not looking for process dump but a complete memory dump of the system which we can further use with tool like volatility or something.

Thanks in advance.

Regard