This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy. Click Preferences to customize your cookie settings.
Welcome to the Cortex XSIAM resources page. Cortex XSIAM, the autonomous security platform powering the Modern SOC, operates across both cloud and enterprise security operations, providing true end-to-end-management of threats wherever they originate. This page provides information and resources to make your Palo Alto Networks journey as simple as possible. Ask your questions, find answers, connect with peers, and get access to troubleshooting resources all in one place.
I want to create a dataset to send certain types of logs to this dataset. For example, I want to create a dataset linux_facility_1 for example. Then I... —
Read more
Hi
I have been searching around online, both on https://xsoar.pan.dev/ and looking at looking at the source code on github, for the Core - Investigati... —
Read more
Hi dear community :): I have a question
Several alerts are forwarding in my Cortex XSIAM system coming from Microsoft Defender, these alerts have dif... —
Read more
In XSIAM playbook,I’m trying to fetch the incident status. When the incident status is changed to for eg under_investigation I want to my playbook to ... —
Read more
Hi Palo Team, I am trying to onboard Forcepoint proxy logs into XSIAM, but i couldn't found any marketplace app/supporting datamodel.Could someone hel... —
Read more
07-15-2024
—
On July 1, 2024, a critical signal handler race condition vulnerability
was disclosed in OpenSSH servers (sshd) on glibc-based Linux systems.
This vulnerability, called RegreSSHion and tracked as CVE-2024-6387, can
result in unauthenticated remote... —
Read more
Labels:
Cortex XDRCortex XpanseCortex XSIAMCortex XSOARCVE-2024-6387OpenSSHRegreSSHionRemote Code ExecutionSSHthreat brief 15759
by
rtsedakain Community Blogs
07-15-2024
—
In an era where cybersecurity threats are evolving at a breakneck pace,
Extended Detection and Response (XDR) solutions have emerged as the
vanguard of defense for organizations. But what if we could extend the
capabilities of the Cortex XSIAM sol... —
Read more
07-03-2024
—
ith the ever evolving threat landscape, security operations teams
require a new level of efficiency to protect their organizations. The
latest release across Cortex products aims to solve a diverse set of
challenges in security operations, all whi... —
Read more
Labels:
Cortex XDRCortex XpanseCortex XSIAMCortex XSOARXDRXpanseXSIAMXSOAR 5132
by
GonenFinkin Community Blogs
06-05-2024
—
SmartGrouping is a crucial aspect of security operations, allowing to
connect disparate alerts and paint a comprehensive picture of an attack.
It's like piecing together a puzzle, where each alert represents a
piece, and the complete picture revea... —
Read more
05-16-2024
—
Kubernetes has revolutionized the way we deploy and manage applications,
but its complexity and dynamic nature also introduce a new set of
security challenges. Attackers are constantly looking for ways to
exploit vulnerabilities in Kubernetes clus... —
Read more