Cortex XQL Query
Hi Guys,
Sort of new to XDR does anyone have any good xql queries for detecting assets without cortex agents installed and if the cyserver service has stopped working?
Thanks
This website uses cookies essential to its operation, for analytics, and for personalized content. By continuing to browse this site, you acknowledge the use of cookies.
For details on cookie usage on our site, read our Privacy Policy
For details on cookie usage on our site, read our Privacy Policy
Cortex XDR Discussions
Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all PANW products in one place, telling the full story of what actually happened in seconds and allows seamless response.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- LIVEcommunity
- Discussions
- Security Operations
- Cortex XDR Discussions
Options
- Mark all as New
- Mark all as Read
- Float this item to the top
- Subscribe to RSS Feed
- Threaded format
- Linear Format
- Sort by Topic Start Date
Cortex XDR Discussions
Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all PANW products in one place, telling the full story of what actually happened in seconds and allows seamless response.
Palo Alto Networks Approved
Community Expert Verified
About Cortex XDR Discussions
Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all PANW products in one place, telling the full story of what actually happened in seconds and allows seamless response.
Please note: All postings in LIVEcommunity are visible to other users; please keep your network secure by refraining from posting live IP address’s or domain names here. Contact your Customer Success team for network-specific questions.
Discussions
Cortex XDR Agent Tamper Protection Notification
Hi everyone,
Can we get the notification on Cortex XDR Management console, if any user is trying to disable the XDR Agent protection and services ?
Regards
System Lockdown with XDR
Hi Folks,
With Cortex XDR can we use feature like System lockdown, more likely say that execute only allowed application and rest all blocked.
It is possible?
Cortex XDR
Regards,
Mansoor
Cortex Agent and PostgreSQL Server
Has anyone installed a Cortex Agent on a high performance database server such as PostgreSQL? We are reaching the point in our rollout where we will need to decide if this is something that we can do without negatively impacting the performance of o
...Resolved! Serial Number of endpoints
Hi All,
Does the Cortex XDR agent fetches endpoint serial number ?
If yes, where I can find it in the XDR console(Under which field).
Thanks in advance !!
New solutions
Latest Comments
- timurphy on: API Key Required Permissions for File Retrieval
- PiyushKohli on: Cortex XDR
- jclements on: Cortex XDR version 8 Autoupgrade behaviour on Server 2008 R2
- Jeroen_Proost on: Cortex XDR Incident Best Practices
- mavraham on: how to block software if the version change happen
- RFeyertag on: XQL Query: Hunting Supply Chain Attack for 3CX
- anlynch on: Cortex XDR Agent 8.0 Windows Requirements? Windows 7 compatible?
- PiyushKohli on: Cortex XDR P2P
- afurze on: How to block Excel macros
- bbarmanroy on: BIOC Question
Top Liked Posts
| Subject | Likes |
|---|---|
| 8 Likes | |
| 5 Likes | |
| 4 Likes | |
| 3 Likes | |
| 3 Likes |
Top Liked Authors
| User | Likes Count |
|---|---|
| 10 | |
| 10 | |
| 7 | |
| 6 | |
| 4 |
Labels
-
Best Practice
1 -
Cortex Data Lake
3 -
Cortex XDR
16 -
Cortex XDR Webinars
2 -
Events
1 -
IoT Security
1 -
Isolation
1 -
Management
2 -
PA Firewall
1 -
PAN-Os
1 -
question
7 -
Setup & Administration
2 -
SIEM
1 -
threat prevention
2 -
XDR
2 -
XDR Events
2 -
XDR Webinars
1
LEGAL NOTICES
Copyright 2007 - 2023 - Palo Alto Networks