Cortex XSOAR Articles

Playbook of The Week: Automated Identity Lifecycle Management   Don't miss Cortex XSOAR's Playbook of the Week, a blog series highlighting compelling content packs in the Marketplace and interesting use cases showcasing the versatility of the Cortex XSOAR platform. This week, we're diving into how XSOAR can be used to automate Identity Lifecycle Management. Click to read the playbook of the week: Automated Identity Lifecycle Management   Cortex XSOAR 

Don't miss out on the Cortex XSOAR's playbook of the week!

Read the PDF below to learn more about the Cortex XSOAR 6.6 features.  In a nut shell: Dynamic layouts and Forms  Action button form control  Edit on Blur Saved query sharing Long text field template And other XSOAR Enhancements Cortex XSOAR 6.6 Features PDF For more information: 6.6 Release info Release notes: https://docs.paloaltonetworks.com/cortex/cortex-xsoar/6-6/cortex-xsoar-release-notes/cortex-soar-release-information/cortex-soar-new-features Admin Guide: https://docs.paloaltonetworks.com/cortex/cortex-xsoar/6-5/cortex-xsoar-admin/cortex-xsoar-overview.h...  Minor Releases: https://docs.paloaltonetworks.com/cortex/cortex-xsoar/6-6/cortex-xsoar-release-notes/cortex-soar-release-information/minor-releases   If you have additional product questions about Cortex XSOAR 6.6, be sure to post them in the Cortex XSOAR Discussions forum. Cortex XSOAR 

Offline packs and Docker flow

The CI/CD flow allows customers to manage their custom content in a pack structure outside of XSOAR

A template for implementing the OOTB Phishing Use Case in Cortex XSOAR

Download the new XSOAR playbook responding to the Log4j zero day exploit

NOBELIUM is a playbook for handing a wide-scale spear phishing campaign, such as the one Microsoft experienced in late May 2021.  

Cortex XSOAR in an Electric Utility Company

Cortex XSOAR in Telecom

Cortex XSOAR in a Top Tech Company

How Esri Reduced Its Alert Barrage with Cortex XSOAR

Use of Generative AI (GenAI) and Retrieval Augmented Generation (RAG) with XSOAR is provided by the Anything LLM marketplace content pack. Anything LLM can be cloud-based or to address privacy, compliance, and cost requirements; it can be installed on customer infrastructure.  A large selection of LLM models and vector databases are available in Anything LLM and custom LLM models can be imported.  

Cortex XSOAR customers love to customize their instances. If a customer decides to customize an integration, they may find the assigned docker image is not configured to handle the additional actions. In events such as these, you may need to consider creating a custom docker image. Before going down this road, however, you do have some considerations to make. First, you should review the XSOAR image repository  and confirm there are no existing images available that meet your needs.