This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community experience. Read our Privacy Policy. Click Preferences to customize your cookie settings.
Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all Palo Alto Networks products in one place.
Welcome to the Cortex XDR resource page. Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all Palo Alto Networks products in one place. On this page you can engage in Cortex XDR discussions and review helpful resources dedicated to Cortex XDR.
We have branch network connected to Data center via MPLS VPN link. All branch PCs internet traffic going out from the DC firewall. From all the branch... —
Read more
Hi All,Looking for an XQL query to detect extensions installed from an applications marketplace to use within the application. For eg. someone install... —
Read more
Hi,
Can anyone tell me what is the purpose of the "Cluster Name" and "Development Platform" fields when creating a Cortex XDR Kubernetes Agent Install... —
Read more
Hi Team,
I have enabled the Cortex XDR agent settings for certificate enforcement. However, endpoints are showing as only partially protected, and the... —
Read more
Hi everyone,
I'm trying to use the 'run_script' API to start the built-in 'Execute_Commands' script on a target machine. I've worked through a few e... —
Read more
04-10-2024
—
April 2024
UPCOMING EVENTS
Alert Tuning Webinar Series
Join us for a Customer Success webinar series, Alert Tuning, starting on
April 24! You may register below for the series in advance.
Register here: Part 1 | Part 2 Symphony 2024: AI and Automation Come see
where security operations are heade... —
Read more
03-18-2024
—
March 2024
UPCOMING EVENTS
Parsing and Correlation Rules Webinar Series
Register now for the last part of the webinar series: Parsing &
Correlation Rules - Improving Application Security with Correlations.
Register here: Part 3 Investigation and Threat Hunting Virtual Workshop
Calling all custome... —
Read more
02-16-2024
—
February 2024
UPCOMING EVENTS
Parsing and Correlation Rules Webinar Series
Register now for Part 2 of the webinar series: Correlation Rules - the
core of detection. You may review the recording for Part 1 in the
On-Demand section below Register here: Part 2 | Part 3 Investigation and
Threat Hunti... —
Read more
06-11-2024
—
Today, we are excited to announce that Cortex XDR has been recognized as
a Leader in The Forrester Wave™: Extended Detection and Response (XDR)
Platforms, Q2 2024. —
Read more
06-05-2024
—
SmartGrouping is a crucial aspect of security operations, allowing to
connect disparate alerts and paint a comprehensive picture of an attack.
It's like piecing together a puzzle, where each alert represents a
piece, and the complete picture revea... —
Read more
05-16-2024
—
Kubernetes has revolutionized the way we deploy and manage applications,
but its complexity and dynamic nature also introduce a new set of
security challenges. Attackers are constantly looking for ways to
exploit vulnerabilities in Kubernetes clus... —
Read more
05-15-2024
—
The Cortex XDR - Remote PsExec with LOLBin command execution alert
playbook enables organizations to automate and expedite alert handling. —
Read more
04-25-2024
—
As cloud computing continues to evolve and becomes the ad-hoc standard
for many of the world’s largest enterprises, we also see attack surfaces
growing and the escalation of cyberthreats targeting the cloud and
traditional enterprise assets. These... —
Read more
Labels:
CDR CloudCortex XDRCortex XSIAMdetection and responseXDRXSIAM 1580
by
emgarciain Community Blogs