Cortex XDR Discussions

Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all PANW products in one place, telling the full story of what actually happened in seconds and allows seamless response.

Discussions

Sorted by:

Start a conversation

A question from the Alert Tuning Operations Webinar: Signing level in a child process

We have a mac-device on which even a reinstalled chrome creates child processes (Google Chrome Helper) that are apparently below the signing level of the parent process. Their signatures seem to be valid. Seems like whitelisting the hash of the initi

...

Resolved! A question from the Alert Tuning Operations Webinar: PA Repository

1. Does PA have a repository of IOC to import to XDR?

2. 2. Does PA have a repository of Alert Exclusions to import to XDR? For example well known windows process and BIOC.

Cortex XDR

*Note: This question was submitted during our customer succes

...