Cortex XSIAM

Resources for Cortex XSIAM, Palo Alto Networks’ autonomous security platform powering the Modern SOC.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Cortex XSIAM

Welcome to the Cortex XSIAM resources page. Cortex XSIAM, the autonomous security platform powering the Modern SOC, operates across both cloud and enterprise security operations, providing true end-to-end-management of threats wherever they originate. This page provides information and resources to make your Palo Alto Networks journey as simple as possible. Ask your questions, find answers, connect with peers, and get access to troubleshooting resources all in one place.

Discussions

Author Topic Views Replies
JayGolf
01-15-2025

Welcome to the Cortex XSIAM Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating: Rules and Best Practices Be ... — Read more

posted in Cortex XSIAM Discussions

73 0
PA_nts
01-15-2025

sending NGFW logs to XSIAM without broker-vm

Hi, I have a xsiam tenant running and a palo vm-100 (11.2.x) in our lab (xsiam / ngfw exists in the same csp account) trying to find docs on this proc... — Read more

posted in Cortex XSIAM Discussions

106 0
geyciane.tavares
01-13-2025

XSIAM Incidents notes and messenger Contains an image

Hi everyone, I am trying to get all the information added to the Notepad or Messenger fields (Incident Discussion) from the incidents.I do not need ... — Read more

posted in Cortex XSIAM Discussions

122 0
Adi-Kimhi
01-13-2025

Dynamic Parsing of JSON to fields in XQL

Hi everyone, I’m working with a dataset in Cortex XSIAM, where I have a field containing JSON data. I want to dynamically parse this JSON so that ea... — Read more

posted in Cortex XSIAM Discussions

103 0
SBSK-Engine
01-09-2025

Broker VM rejects SSL certificate Contains a hyperlink

Hello PAN community, I am trying to import a SSL certificate into our #BrokerVMI can upload the private key, but the Server Certificate gets rejecte... — Read more

posted in Cortex XSIAM Discussions

270 1

Blogs

Threat Brief: CVE-2024-6387 OpenSSH RegreSSHion Vulnerability Contains an image Contains a hyperlink

07-15-2024 — On July 1, 2024, a critical signal handler race condition vulnerability was disclosed in OpenSSH servers (sshd) on glibc-based Linux systems. This vulnerability, called RegreSSHion and tracked as CVE-2024-6387, can result in unauthenticated remote... — Read more

Labels: Cortex XDR Cortex Xpanse Cortex XSIAM Cortex XSOAR CVE-2024-6387 OpenSSH RegreSSHion Remote Code Execution SSH threat brief
12806 by in Community Blogs

Harnessing the Power of Cortex XSIAM for Enhanced File Management and Data Privacy Contains an image

07-15-2024 — In an era where cybersecurity threats are evolving at a breakneck pace, Extended Detection and Response (XDR) solutions have emerged as the vanguard of defense for organizations. But what if we could extend the capabilities of the Cortex XSIAM sol... — Read more

Labels: Cortex XSIAM Endpoint Security
1685 4 by in Community Blogs

What’s Next in Cortex - New Wave of Innovations in Cortex (June 2024 Release) Contains an image Contains a hyperlink

07-03-2024 — ith the ever evolving threat landscape, security operations teams require a new level of efficiency to protect their organizations. The latest release across Cortex products aims to solve a diverse set of challenges in security operations, all whi... — Read more

Labels: Cortex XDR Cortex Xpanse Cortex XSIAM Cortex XSOAR XDR Xpanse XSIAM XSOAR
4277 by in Community Blogs

SmartGrouping - Precision AI™-Driven Investigation Contains an image Contains a hyperlink

06-05-2024 — SmartGrouping is a crucial aspect of security operations, allowing to connect disparate alerts and paint a comprehensive picture of an attack. It's like piecing together a puzzle, where each alert represents a piece, and the complete picture revea... — Read more

Labels: Cortex XDR Cortex XSIAM XDR XSIAM
1747 by in Community Blogs

Securing Kubernetes Clusters: The Cortex XDR and XSIAM Approach Contains an image Contains a hyperlink

05-16-2024 — Kubernetes has revolutionized the way we deploy and manage applications, but its complexity and dynamic nature also introduce a new set of security challenges. Attackers are constantly looking for ways to exploit vulnerabilities in Kubernetes clus... — Read more

Labels: Cortex XDR Cortex XSIAM Kubernetes
4053 by in Community Blogs

Cortex-XSIAM-Release-Notes

Videos

Your SOC's Efficiency & Automation Powerhouse | Cortex XSIAM

Published on Dec 17, 2022
13,773 views
113 likes

Revolutionize Your SOC: Cyber Security Case Study | Cortex XSIAM

Published on Nov 18, 2022
3,047 views
17 likes

Digital Learning Courses

Visit Palo Alto Networks' learning platform, Beacon, for free technical knowledge and educational resources related to all of our products.

Please note: You need to be logged into SSO in order to view this content.