This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

Cortex XDR

Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all Palo Alto Networks products in one place.
cancel
Turn on suggestions
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Cortex XDR

Welcome to the Cortex XDR resource page. Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all Palo Alto Networks products in one place. On this page you can engage in Cortex XDR discussions and review helpful resources dedicated to Cortex XDR.

Discussions

Need answers? Register or Sign-in to Engage, Share, and Learn.
Author Topic Views Replies
a2123k1
a2123k1
03-14-2025

Rare Admin Login in Environment

Hi guys, could anyone help me with the query I'm trying to do. I'm looking to build an alert based on the rarity of a login in the environment. For in... — Read more

posted in Cortex XDR Discussions

100 0
TurkanAsadova
TurkanAsadova
03-14-2025

Alert for Any PowerShell Script Execution in Cortex XDR

Hi Cortex XDR Community, I want to set up an alert in Cortex XDR that triggers whenever any user runs a PowerShell script. The alert should activate f... — Read more

posted in Cortex XDR Discussions

108 2
jannette
jannette
03-13-2025

On-demand file Examination policy

Hi, I've got 3 questions.1. I want to schedule a daily scan on servers with cortex xdr, I'm aware that Cortex only has options for weekly and monthl... — Read more

posted in Cortex XDR Discussions

121 1
Vinothkumar_SBA
Vinothkumar_SBA
03-13-2025

Cortex xdr agent certificate

Hi all, I have some doubts regarding the Cortex XDR agent certificate. I have gone through multiple blogs, which provided some insights, but I am stil... — Read more

posted in Cortex XDR Discussions

91 0
Rolando_Pena
Rolando_Pena
03-12-2025

BIOC not supported

Good afternoon, I'm trying to create a BIOC rule that tells me when users are trying to access the wetransfer.com and dropbox.com DNS. To do this, I... — Read more

1 posted in Cortex XDR Discussions

239 1
Join now

Articles

Cortex XDR CS Newsletter June 2024 Contains an image Contains a hyperlink

06-13-2024 — Don't miss our monthly announcements, How-to Videos, and latest blogs in the Customer Success What's New Newsletter! — Read more

Labels: Cortex XDR XDR Newsletter
1808 published by in Cortex XDR Articles
06-13-2024 edited by

Cortex XDR CS Newsletter May 2024 Contains an image Contains a hyperlink

05-09-2024 — Read all the latest and greatest from Cortex XDR Customer Success! — Read more

Labels: Cortex XDR XDR Newsletter
1784 published by in Cortex XDR Articles
05-09-2024 edited by

Cortex XDR CS Newsletter April 2024 Contains an image Contains a hyperlink

04-10-2024 — April 2024 UPCOMING EVENTS Alert Tuning Webinar Series Join us for a Customer Success webinar series, Alert Tuning, starting on April 24! You may register below for the series in advance. Register here: Part 1 | Part 2 Symphony 2024: AI and Automation Come see where security operations are heade... — Read more

Labels: Cortex XDR XDR Newsletter
1854 published by in Cortex XDR Articles
04-10-2024 edited by

Cortex XDR CS Newsletter March 2024 Contains an image Contains a hyperlink

03-18-2024 — March 2024 UPCOMING EVENTS Parsing and Correlation Rules Webinar Series Register now for the last part of the webinar series: Parsing & Correlation Rules - Improving Application Security with Correlations. Register here: Part 3 Investigation and Threat Hunting Virtual Workshop Calling all custome... — Read more

Labels: Cortex XDR
2067 published by in Cortex XDR Articles
03-18-2024 edited by

Cortex XDR CS Newsletter Feb 2024 Contains an image Contains a hyperlink

02-16-2024 — February 2024 UPCOMING EVENTS Parsing and Correlation Rules Webinar Series Register now for Part 2 of the webinar series: Correlation Rules - the core of detection. You may review the recording for Part 1 in the On-Demand section below Register here: Part 2 | Part 3 Investigation and Threat Hunti... — Read more

Labels: Cortex XDR
2163 published by in Cortex XDR Articles
02-16-2024 edited by

View All

Blogs

Threat Brief: CVE-2024-6387 OpenSSH RegreSSHion Vulnerability Contains an image Contains a hyperlink

07-15-2024 — On July 1, 2024, a critical signal handler race condition vulnerability was disclosed in OpenSSH servers (sshd) on glibc-based Linux systems. This vulnerability, called RegreSSHion and tracked as CVE-2024-6387, can result in unauthenticated remote... — Read more

Labels: Cortex XDR Cortex Xpanse Cortex XSIAM Cortex XSOAR CVE-2024-6387 OpenSSH RegreSSHion Remote Code Execution SSH threat brief
15551 by in Community Blogs

Introducing the New Cortex Shellcode AI Protection: A Precision AI-Driven Module Contains an image Contains a hyperlink

07-15-2024 — In this write-up, we will dive into the realm of shellcode and examine how our AI-driven approach is once again raising the bar when it comes to threat detection and prevention. — Read more

Labels: Cortex Cortex XDR Precision AI shellcode
3378 1 by in Community Blogs

What’s Next in Cortex - New Wave of Innovations in Cortex (June 2024 Release) Contains an image Contains a hyperlink

07-03-2024 — ith the ever evolving threat landscape, security operations teams require a new level of efficiency to protect their organizations. The latest release across Cortex products aims to solve a diverse set of challenges in security operations, all whi... — Read more

Labels: Cortex XDR Cortex Xpanse Cortex XSIAM Cortex XSOAR XDR Xpanse XSIAM XSOAR
5054 by in Community Blogs

Palo Alto Networks Excels in MITRE Managed Services Evaluation Contains an image Contains a hyperlink

06-25-2024 — Palo Alto Networks Unit 42 is a leader in MDR, delivering MTTD twice as fast as the average participant and leveraging the industry’s best XDR technology. — Read more

Labels: Cortex XDR XDR
1709 by in Community Blogs

Forrester Names Palo Alto Networks a Leader in XDR Contains an image Contains a hyperlink

06-11-2024 — Today, we are excited to announce that Cortex XDR has been recognized as a Leader in The Forrester Wave™: Extended Detection and Response (XDR) Platforms, Q2 2024. — Read more

Labels: Cortex XDR XDR
2502 2 by in Community Blogs

View All
cortex-xdr-release-notes

Videos

Cortex XDR by Palo Alto Networks

Published on Apr 27, 2020
3,141 views
13 likes

Digital Learning Courses

Visit Palo Alto Networks' learning platform, Beacon, for free technical knowledge and educational resources related to all of our products.

Please note: You need to be logged into SSO in order to view this content.

LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks