This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy. Click Preferences to customize your cookie settings.
Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all Palo Alto Networks products in one place.
Welcome to the Cortex XDR resource page. Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all Palo Alto Networks products in one place. On this page you can engage in Cortex XDR discussions and review helpful resources dedicated to Cortex XDR.
Hi,
We have endpoints that we are considering deleting from our Gateway. It is my understanding that this is mainly a cosmetic/license recovery acti... —
Read more
Hello Everyone,I am new to Cortex and we are receiving an alert related to "vmtools.exe" on continuous basis. I would like to ask if we can create an ... —
Read more
Hi,
I need a XQL query which outputs all endpoints and installed versions of a specific application. I found a way to get all computers with the app... —
Read more
Hi Dears,
I have configured a proxy on the endpoints to allow them to establish a connection with the Broker VM. Everything is working as expected, an... —
Read more
Hello,
We're receiving this alert from 5th of March for some endpoints. There is nothing suspicious in the incident, file is signed and have verdict... —
Read more
04-10-2024
—
April 2024
UPCOMING EVENTS
Alert Tuning Webinar Series
Join us for a Customer Success webinar series, Alert Tuning, starting on
April 24! You may register below for the series in advance.
Register here: Part 1 | Part 2 Symphony 2024: AI and Automation Come see
where security operations are heade... —
Read more
03-18-2024
—
March 2024
UPCOMING EVENTS
Parsing and Correlation Rules Webinar Series
Register now for the last part of the webinar series: Parsing &
Correlation Rules - Improving Application Security with Correlations.
Register here: Part 3 Investigation and Threat Hunting Virtual Workshop
Calling all custome... —
Read more
02-16-2024
—
February 2024
UPCOMING EVENTS
Parsing and Correlation Rules Webinar Series
Register now for Part 2 of the webinar series: Correlation Rules - the
core of detection. You may review the recording for Part 1 in the
On-Demand section below Register here: Part 2 | Part 3 Investigation and
Threat Hunti... —
Read more
07-15-2024
—
On July 1, 2024, a critical signal handler race condition vulnerability
was disclosed in OpenSSH servers (sshd) on glibc-based Linux systems.
This vulnerability, called RegreSSHion and tracked as CVE-2024-6387, can
result in unauthenticated remote... —
Read more
Labels:
Cortex XDRCortex XpanseCortex XSIAMCortex XSOARCVE-2024-6387OpenSSHRegreSSHionRemote Code ExecutionSSHthreat brief 15759
by
rtsedakain Community Blogs
07-15-2024
—
In this write-up, we will dive into the realm of shellcode and examine
how our AI-driven approach is once again raising the bar when it comes
to threat detection and prevention. —
Read more
07-03-2024
—
ith the ever evolving threat landscape, security operations teams
require a new level of efficiency to protect their organizations. The
latest release across Cortex products aims to solve a diverse set of
challenges in security operations, all whi... —
Read more
Labels:
Cortex XDRCortex XpanseCortex XSIAMCortex XSOARXDRXpanseXSIAMXSOAR 5132
by
GonenFinkin Community Blogs
06-25-2024
—
Palo Alto Networks Unit 42 is a leader in MDR, delivering MTTD twice as
fast as the average participant and leveraging the industry’s best XDR
technology. —
Read more
06-11-2024
—
Today, we are excited to announce that Cortex XDR has been recognized as
a Leader in The Forrester Wave™: Extended Detection and Response (XDR)
Platforms, Q2 2024. —
Read more