Hi, My Playbook is able to get arcsight events those related to a correlation (alarm) but i need to visualize these base events into layout tab but cant find a proper way. Do you have any su...
Hi, I need to join 2 context keys that match value of the same subkey, however I can't find a proper automation or transformation. In context I have 2 keys. One key contains IP's and Hostnam...
Access Panorama to firewall Gui context and CLI context
Hello, good morning, I reiterate, thank you again for the information, help and support. Please support the following topic:
Curre...
Hello,
I was curious if is the Palo Alto Prisma Cloud WAAS just a host based WAF or a Runtime Application Self Protection (RASP) solution? My idea is that RASP is getting popular ...
Hello,
My question is what are the capabilities of Cortex XDR without endpoint agents and just with PANOS firewall integration? As the Palo Alto firewall can forward its logs to t...
Hi Guys, Is there any way I can create an alert in our SIEM tool for SPN failure? Let's say SPN Europe Central for our environment goes down, then what logs can we track for this?
Hi, I want to set sla times per severity type but it seems xsoar bind sla's to incident type, so i think i need to start each sla per severity in playbook by testing severity it is nearly clea...
We are running a multi tenant xsoar server and I noticed that we are using CentOS 8 Linux which reached End of Life recently. There is also the stream version of CentOS8. For this version the EOL dat...
We are trying to use DNS wildcards and Custom URL categories to restrict access to certain machines in a security policy. We cannot get it to work and I cannot find any docs that a URL filtering...
hi everybody, we've installed cortex xdr agent on a terminal-master server which gets cloned for distribution xdr-agent on master has active connection to cortex-cloud but ...