This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy. Click Preferences to customize your cookie settings.
Welcome to the Cortex XSIAM resources page. Cortex XSIAM, the autonomous security platform powering the Modern SOC, operates across both cloud and enterprise security operations, providing true end-to-end-management of threats wherever they originate. This page provides information and resources to make your Palo Alto Networks journey as simple as possible. Ask your questions, find answers, connect with peers, and get access to troubleshooting resources all in one place.
Hi,
We are using Cortex XSIAM. Currently, some Microsoft Windows 10 and 11 agents are not receiving updates, indicating that they will soon become out... —
Read more
Hi,
We are using Cortex XSIAM. Now we want to perform monitoring of Bluetooth in Microsoft Windows 10 and 11 computers. The reason we want to check ... —
Read more
Hi Team,
I have a doubt about Host Firewall rule evaluation. Let say i have a rule created to allow all internal application inbound traffic on specif... —
Read more
This is in XSIAM. When I create an instance in "Automation and Feed integrations" I can see that it creates one in the "Data sources" section as well.... —
Read more
As we have an option in Splunk to see the all the message tracking logs through Microsoft message trace app, do we have any similar app to integrate?C... —
Read more
07-15-2024
—
On July 1, 2024, a critical signal handler race condition vulnerability
was disclosed in OpenSSH servers (sshd) on glibc-based Linux systems.
This vulnerability, called RegreSSHion and tracked as CVE-2024-6387, can
result in unauthenticated remote... —
Read more
Labels:
Cortex XDRCortex XpanseCortex XSIAMCortex XSOARCVE-2024-6387OpenSSHOpenSSH . RegreSSHion . VulnerabilityRegreSSHionRemote Code ExecutionSSHthreat brief 16270
by
rtsedakain Community Blogs
07-15-2024
—
In an era where cybersecurity threats are evolving at a breakneck pace,
Extended Detection and Response (XDR) solutions have emerged as the
vanguard of defense for organizations. But what if we could extend the
capabilities of the Cortex XSIAM sol... —
Read more
07-03-2024
—
ith the ever evolving threat landscape, security operations teams
require a new level of efficiency to protect their organizations. The
latest release across Cortex products aims to solve a diverse set of
challenges in security operations, all whi... —
Read more
Labels:
Cortex XDRCortex XpanseCortex XSIAMCortex XSOARXDRXpanseXSIAMXSOAR 5318
by
GonenFinkin Community Blogs
06-05-2024
—
SmartGrouping is a crucial aspect of security operations, allowing to
connect disparate alerts and paint a comprehensive picture of an attack.
It's like piecing together a puzzle, where each alert represents a
piece, and the complete picture revea... —
Read more
05-16-2024
—
Kubernetes has revolutionized the way we deploy and manage applications,
but its complexity and dynamic nature also introduce a new set of
security challenges. Attackers are constantly looking for ways to
exploit vulnerabilities in Kubernetes clus... —
Read more