This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community experience. Read our Privacy Policy. Click Preferences to customize your cookie settings.
Welcome to the Cortex XSIAM resources page. Cortex XSIAM, the autonomous security platform powering the Modern SOC, operates across both cloud and enterprise security operations, providing true end-to-end-management of threats wherever they originate. This page provides information and resources to make your Palo Alto Networks journey as simple as possible. Ask your questions, find answers, connect with peers, and get access to troubleshooting resources all in one place.
Hi Team,
I'd like to enquire whether Cortex XSIAM can search the logs of a dataset using XQL Query in a Playbook.Cortex XSOAR can do that for Cortex... —
Read more
Hi,
I would like some guidance on which data source I should use when integrating Proofpoint TAP into XSIAM.
In the content pack "Proofpoint TAP" ... —
Read more
I would like to see a list of rules regarding the types of incidents I receive in XSIAM.
I am not talking about IOC/BIOC
Can anyone help with the p... —
Read more
Hi Team,
I have a new client, one urgently transitioning from QRadar to Cortex XSIAM, and I'm completely unfamiliar with XSIAM. I urgently need inst... —
Read more
Looking to migrate from QRadar/QRoC to XSIAM
In QRadar/QRoC, coalescing works in the following manner:
https://www.ibm.com/support/pages/qradar-how-do... —
Read more
07-15-2024
—
On July 1, 2024, a critical signal handler race condition vulnerability
was disclosed in OpenSSH servers (sshd) on glibc-based Linux systems.
This vulnerability, called RegreSSHion and tracked as CVE-2024-6387, can
result in unauthenticated remote... —
Read more
Labels:
Cortex XDRCortex XpanseCortex XSIAMCortex XSOARCVE-2024-6387OpenSSHRegreSSHionRemote Code ExecutionSSHthreat brief 3942
by
rtsedakain Community Blogs
07-15-2024
—
In an era where cybersecurity threats are evolving at a breakneck pace,
Extended Detection and Response (XDR) solutions have emerged as the
vanguard of defense for organizations. But what if we could extend the
capabilities of the Cortex XSIAM sol... —
Read more
07-03-2024
—
ith the ever evolving threat landscape, security operations teams
require a new level of efficiency to protect their organizations. The
latest release across Cortex products aims to solve a diverse set of
challenges in security operations, all whi... —
Read more
Labels:
Cortex XDRCortex XpanseCortex XSIAMCortex XSOARXDRXpanseXSIAMXSOAR 2052
by
GonenFinkin Community Blogs
06-05-2024
—
SmartGrouping is a crucial aspect of security operations, allowing to
connect disparate alerts and paint a comprehensive picture of an attack.
It's like piecing together a puzzle, where each alert represents a
piece, and the complete picture revea... —
Read more
05-16-2024
—
Kubernetes has revolutionized the way we deploy and manage applications,
but its complexity and dynamic nature also introduce a new set of
security challenges. Attackers are constantly looking for ways to
exploit vulnerabilities in Kubernetes clus... —
Read more