This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community experience. Read our Privacy Policy. Click Preferences to customize your cookie settings.
Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all Palo Alto Networks products in one place.
Welcome to the Cortex XDR resource page. Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all Palo Alto Networks products in one place. On this page you can engage in Cortex XDR discussions and review helpful resources dedicated to Cortex XDR.
Hi All:
We found that the Alert notification sent by XDR was delayed in delivery.It often took over a minute to arrive, and on one occasion it took ... —
Read more
Hi CommunityI am trying to get notifications when alerts or incidents are resolved but it doesnt seem that there is a direct way to do so.So is there ... —
Read more
Hello i'm trying to do query for the specific fields in the datasets, im trying to do regextract to filter out some specific value in the fields then ... —
Read more
Hello, In my company, we have many non-persistent VDIs, and sometimes an alert arises and I couldn't perform the 'Retrieve alert data' because when i ... —
Read more
Hello,We have a use case in that we want to pre-scan files in a software installed on Linux. Is there any way to do a custom scan using Cortex in Linu... —
Read more
03-18-2024
—
March 2024
UPCOMING EVENTS
Parsing and Correlation Rules Webinar Series
Register now for the last part of the webinar series: Parsing &
Correlation Rules - Improving Application Security with Correlations.
Register here: Part 3 Investigation and Threat Hunting Virtual Workshop
Calling all custome... —
Read more
02-16-2024
—
February 2024
UPCOMING EVENTS
Parsing and Correlation Rules Webinar Series
Register now for Part 2 of the webinar series: Correlation Rules - the
core of detection. You may review the recording for Part 1 in the
On-Demand section below Register here: Part 2 | Part 3 Investigation and
Threat Hunti... —
Read more
01-10-2024
—
January 2024
UPCOMING EVENTS
Parsing and Correlation Rules Webinar Series
Register now for our upcoming webinar series: Parsing and Correlation
Rules - from Fundamentals to Practical Applications, starting on Jan
31st. Register below: Part 1 | Part 2 | Part 3 Investigation and Threat
Hunting Virt... —
Read more
11-09-2023
—
November 2023
UPCOMING EVENTS
Customer Success Webinar Monitoring with XQL
Join us on Nov 29th for a CS webinar and expand your monitoring
capabilities using XQL!
>> Register here Investigation and Threat Hunting Virtual Workshop
Calling all customers to join our 3-hour virtual workshop design... —
Read more
03-25-2024
—
AI tends to be understood as one coherent field of study and application
where similar solutions apply for all the use cases. The reality is that
applying AI in real-world environments with high precision requires
specialization in the specific fi... —
Read more
03-18-2024
—
Identity analytics is a critical cybersecurity tool in combating the
challenges posed by compromised user accounts and malicious insiders.
Identity threats are pervasive across organizations of all sizes and
industries, potentially exposing sensit... —
Read more
11-17-2023
—
The new Cortex XDR Lite - Incident Handling playbook is a new addition
to the Palo Alto Networks Cortex XDR - Investigation and Response
content pack. Used as the default playbook in this content pack, it
streamlines incident response workflows fo... —
Read more
10-31-2023
—
With the new Cortex XDR Identity Threat Detection and Response (ITDR)
module integration built into our existing XSOAR playbooks, you will
gain the ability to enrich your SOC incident data with valuable insights
into user and host identity threats. —
Read more
Labels:
AutomationCortex XDRCortex XSOARPlaybook of the Weekthreat intelligence 2565
by
emgarciain Community Blogs