Cortex XSOAR

Cortex XSOAR

Cortex XSOAR by Palo Alto Networks enables SOC analysts to manage alerts across all sources, standardize processes with Cortex XSOAR playbooks, take action on threat intel, and automate response for any security use case.

Welcome to the Cortex XSOAR community page for Palo Alto Networks! Cortex XSOAR enables SOC analysts to manage alerts across all sources, standardize processes with playbooks, take action on threat intel, and automate response for any security use case.

On this page, you can engage in Cortex XSOAR discussions, find helpful resources, gain Community Edition support, and discover events dedicated to Cortex XSOAR.

Discussions

Need answers? Register or Sign-in to Engage, Share, and Learn.

Global
Community Edition

Author	Topic	Views	Replies
DanielBenistiPel 11-09-2021	Demisto Siem integration Hi, I want to add Demsito to our soc and integrate it with Qradar. i saw that Demisto supports this integration, but i didn't find documentation on su... posted in Cortex XSOAR Discussions	7424	6
ELaufer 12-06-2020	Domain checker playbook Has anyone written a playbook that would check the age of a domain, say via it's Whois creation date, and then do a task?* *Originally contributed to ... 1 posted in Cortex XSOAR Discussions	5640	3

Author	Topic	Views	Replies
ELaufer 12-11-2022	Cortex XSOAR - Community Edition Support Post here for all of your Community Edition support questions and one of our product experts will get back to you soon! 2 posted in Cortex XSOAR Discussions	11406	27

Articles

Cortex XSOAR New Content Pack Release - Feb 23'

03-01-2023 — New Content Packs Release For more info on use cases, integrations and related documentation click on the Pack title: Cortex XpanseContent for working with Attack Surface Management (ASM). Fortin...

Labels: Content pack release Cortex XSOAR
343 2 published by rtsedaka in Cortex XSOAR Articles
03-01-2023 edited by rtsedaka

Cortex XSOAR New Content Pack Release - January 2023

02-02-2023 — New Content Packs Release MITRE ATT&CK - Courses of ActionLooking for actionable intelligence? This intelligence-driven Pack provides manual or automated remediation of MITRE ATT&CK techniques. Gre...

Labels: Content pack release Coretx XSOAR
1065 3 published by rtsedaka in Cortex XSOAR Articles
02-02-2023 edited by rtsedaka

Cortex XSOAR New Content Packs Release - Dec 22'

01-02-2023 — New Content Packs Release Azure Enrichment and Remediation Playbooks using multiple Azure content packs for enrichment and remediation purposes CiscoSMAThe Security Management Appliance (SMA) is us...

Labels: Content pack release Cortex XSOAR
579 published by rtsedaka in Cortex XSOAR Articles
01-02-2023 edited by rtsedaka

Cortex XSOAR New Content Packs Release - Nov 22'

12-04-2022 — New XSOAR Content packs released on Nov 22' CVE-2022-3786 & CVE-2022-3602 - OpenSSL X.509 Buffer OverflowsThis pack handles OpenSSL X.609 Buffer Overflows CVE-2022-3786 & RCE CVE-2022-3602 vulnerab...

Labels: Coretx XSOAR Release Notes
566 2 published by rtsedaka in Cortex XSOAR Articles
12-04-2022 edited by rtsedaka

Cortex XSOAR New Content Packs Release - October 22'

11-07-2022 — New XSOAR Content packs released on Oct '22 CVE-2022-41040 & CVE-2022-41082 - ProxyNotShell This pack handles Microsoft Exchange SSRF CVE-2022-41040 & RCE CVE-2022-41082 vulnerabilities, aka Proxy...

Labels: Cortex XSOAR Release Notes
672 published by rtsedaka in Cortex XSOAR Articles
11-07-2022 edited by rtsedaka

Blogs

Cortex XSOAR: CVE-2023-23397 - Microsoft Outlook EoP

03-21-2023 — As part of our Rapid Breach Response program, we developed a pack that handles Microsoft Outlook EoP CVE-2023-23397 vulnerability in Cortex XSOAR.

Labels: blog Cortex XDR Cortex XSOAR
381 by rtsedaka in Blogs

Setting Up Auto-Triage Use Cases in Cortex XSOAR Using KAPE and Cortex XDR

03-20-2023 — This post describes one approach you could take to set up an auto-triage use case in Cortex XSOAR by combining the forces of the Kroll Artifact Parser and Extractor (KAPE) triage tool and Cortex XDR. This general workflow could be adapted to suppo...

Labels: blog Cortex XSOAR
251 by asawyer in Blogs