This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community experience. Read our Privacy Policy. Click Preferences to customize your cookie settings.
Welcome to the Cortex XSIAM resources page. Cortex XSIAM, the autonomous security platform powering the Modern SOC, operates across both cloud and enterprise security operations, providing true end-to-end-management of threats wherever they originate. This page provides information and resources to make your Palo Alto Networks journey as simple as possible. Ask your questions, find answers, connect with peers, and get access to troubleshooting resources all in one place.
Hi guys, i need a little help.
Is there any dataset that contain all the correlations rules created?Or can I retrieve all correlations rules via XQL... —
Read more
Hi Team,
I was searching some logs and I found the query I was running initially was just different from the later (2nd) query, however, I was not get... —
Read more
Hello Everyone,
We have "creation time" field in the incidents dataset. I wanted to query the "incidents" dataset for the specific date ranges of cr... —
Read more
Hello Everyone,
We wanted to calculate the Mean time to detection in XSIAM. Hence we require fields name which has creation time of the alert and ac... —
Read more
11-13-2023
—
Cortex XSIAM 2.0 is the latest innovation for delivering a converged
platform, AI-driven outcomes and an automation-first approach for the
modern SOC. —
Read more
Labels:
AnnouncementCortex XSIAMEDRMITRE ATT&CK Coverage DashboardMust-Read ArticlesProduct FeaturesProducts and ServicesSOARSOCXDRXSIAMXSIAM 2.0 1771
by
GonenFinkin Community Blogs
08-25-2023
—
Recently, Unit 42 researchers have observed an uptick of Mallox
ransomware activities – with an increase of almost 174% compared to the
previous year – exploiting MS-SQL servers to distribute the ransomware. —
Read more
Labels:
Cortex XDRCortex XSIAMRansomwareThreat Advisory AnalysisThreat Briefs and Assessments 2858
by
emgarciain Community Blogs
07-21-2023
—
Executive Summary
On July 11, 2023, Unit 42 cloud researchers discovered a new
peer-to-peer (P2P) worm we call P2PInfect. Written in Rust, a highly
scalable and cloud-friendly programming language, this worm is capable
of cross-platform infections... —
Read more
Labels:
Advanced Threat PreventionAdvanced URL FilteringCloud SecurityCloud-Delivered Security ServicesContainer SecurityCortexCortex XDRCortex XSIAMnext-generation firewallp2pPrisma CloudWorm 1838
2
by
RPrasadiin Community Blogs
06-26-2023
—
Palo Alto Networks Cortex is excited to introduce the latest innovations
across XSIAM, XDR, XSOAR and Xpanse, available starting June 25th, 2023. —
Read more