Anyone use GuardDuty as well as Twistlock?

I understand that Twistlock does run-time monitoring and protection.

In Fargate configuration, it will block any malicious process spawned from the container but will not block the container itself.

I’m curious if anyone enable AWS GuardDuty togeth

Prisma Cloud Application Vulnerability Search : Deployed tab vs CI tab

Not sure if this has been asked before but I am fairly new to checking Prisma vulnerabilities -- I want to resolve High/Critical ones on our APIs but I get confused when checking CI tab and Deployed tab from Compute>Monitor>Vulnerabilities section. C

CIEM JIT Features

Hi All,

Can I check where can I find out more details on the CIEM JIT functionality?

https://www.paloaltonetworks.com/prisma/cloud/cloud-infrastructure-entitlement-mgmt

"Just-in-Time (JIT) Access

Provides a Zero Trust approach to permission managemen

Feature Request: Recommendation for Remediation (OPTIONAL) Box on Custom Policies in Prisma Application Security

When creating a Build Policy on the Prisma console, the Remediation (OPTIONAL) Box is grayed out. I'm told that this is expected, but initially when doing my POC for Prisma back in April, I don't believe this was always the case. If it is, the word "

Prisma Cloud alerts

Hello everyone!

I connected my AWS account to Prisma Cloud service and it automatically scanned it. Now I think that I could have new vulnerabilities on my account but new s3 buckets or EC2 instances don't appers automatically on my Prisma Cloud acco

How can I get the requested license for Prisma Cloud Console?

Hello, I installed Prisma Cloud Console on my environment.

How can I get this license and upload it here?

I checked the page below, but I couldn't find the license to download it and upload it in Prisma Cloud Console...

Thanks in advance.

Removing Prisma Cloud resources from onboarded AWS account

We onboarded an AWS account into a Prisma Cloud demo.  The demo is over.  How do we make sure that we remove all the resources created during the demo?  There's obviously the PrismaCloudRole that was created by the PrismaCloudIAMRoles CloudFormation

The environment variable FARGATE_TASK in the prisma cloud defender sidecar container definition

I have an ECS Scheduled task with two containers. I used the console to generate a new task definition with the defender sidecar. In its container definition, the environment variable `FARGATE_TASK`'s value is the same as the name of my first applica

RQL - Checking tags using _DateTime function

Can _DateTime function be used to check the date of a tag on a resource in AWS? My current query syntax is accepted by prisma however the _DateTime functions are not actually checking the tag (type string because all tags are strings in AWS) so it is

Prima Access | vpn connection blocks legitimate websites

Dear All,
I have Prisma Access, it is presenting me with incidents. When I connect to VPN some websites are blocked, in the access URL profiles it is also whitelisted, I also have a rule for fqdn but it is not resolving.

I hope you can guide me to res

Checkov doesn't natively support TerraGrunt

We had issues with secret scanning output in checkov (see https://live.paloaltonetworks.com/t5/prisma-cloud-discussions/checkov-secrets-framework-scanning-exposes-secrets-in-junit-test/td-p/564324 )

However, if checkov natively supported TerraGru

Checkov Secrets Framework Scanning exposes secrets in junit test output

We have recently starting using checkov scans in our CI/CD pipelines and have a less than stellar experience.

First the positives:

• It is very good at finding secrets!

Now the negative...

• When a secret is found, the secret is included in the junit o

Prisma cloud enterprise RQL query for GCP database migration services.

I want to fetch the information on Connection profiles details under Database migration service in GCP, but I don't find any specific GCP API, which is being ingested the GCP database migration services. can you please help know the exact API for thi