Security Operations
Post questions, provide answers, share best practices, and connect with peers and experts in this area dedicated to Cortex XDR, XSOAR, and Xpanse discussions.
cancel
Showing results for 
Search instead for 
Did you mean: 
Security Operations
Post questions, provide answers, share best practices, and connect with peers and experts in this area dedicated to Cortex XDR, XSOAR, and Xpanse discussions.

Browse the Community

Cortex XDR Discussions

Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all PANW products in one place, telling the full story of what actually happened in seconds and allows seamless response.

645 Posts

Cortex XSOAR Discussions

Cortex XSOAR enables SOC analysts to manage alerts across all sources, standardize processes with playbooks, take action on threat intel, and automate response for any security use case.

297 Posts

Cortex Xpanse Discussions

Cortex Xpanse allows you to 'know your Internet' by providing you with an outside-in view of your Internet attack surface. Post your questions and thoughts on your Attack Surface Management journey here. Please note: All postings in Live Community are visible to other users; please keep your network secure by refraining from posting live IP address...

3 Posts

Activity in Security Operations

clipboard functionality

Hi Guys,

 

Bit of a weird one but has anyone experienced issues with office add ins that uses the clipboard functionality?

seem to be having intermittent errors with it and it just straight up not working.

 

Tried removing the cortex agent from one o

...

Resolved! CrowdStrike Falcon detection mirroring

Hi there, I hope to find some help here.
We are facing issues to make the CrowdStrike Falcon mirroring options work. @
We are following the instruction provided in the documentation https://xsoar.pan.dev/docs/reference/integrations/crowdstrike-falcon 

H

...

Isabelle by L0 Member
  • 432 Views
  • 2 replies
  • 0 Likes

Upload IOC from file to firewall via XSOAR

Hi, 

 

I want to find a way of maximum automatization of the next process: IOC are extracted from CSV file to Cortex XSOAR and than only this indicators are uploaded to firewalls. 

 

I found automations for each step separately but maybe exist any pl

...

Credential management in XSOAR

Hi,

 

How are the credentials for the integrations handled within the product? I.e., are passwords and keys stored in the cloud?

And how are these managed securely?

 

Thanks,

 

DP696 by L1 Bithead
  • 56 Views
  • 1 replies
  • 0 Likes

Resolved! XSOAR Engine Backup/Restore

Background:
In our XSOAR platform setup, the XSOAR server is cloud hosted by Palo Alto and the XSOAR engines are deployed at 2 different data centers (on-prem).  Each of these datacenters will have a single Cortex XSOAR engine server installed, which

...

gnakhede by L1 Bithead
  • 180 Views
  • 2 replies
  • 0 Likes

DTRH: CIS Benchmarking - 3rd Party Data Ingestion | Data Parsing | Widgets & Dashboards

 

 

                                                                                   

DTRH: CIS Benchmarking

3rd Party Data Ingestion | Data Parsing | Widgets & Dashboards

 

Overview

In this DTRH we will look at adding valuable data into XDR from

...

JEbrahimi_0-1659635846472.png
JEbrahimi_1-1659635882109.png
JEbrahimi_2-1659635927721.png
JEbrahimi_3-1659635998808.png

Resolved! Cortex XDR Tags with logo

Dear All,

 

I configured some tags while the installation of the the agent on the workstations, they have the logo attached.

But I need now to change some tags or remove them using  Cortex XDR management console.

I tried Manage Endpoint Tags (paloalt

...

Broker VM compatible with VMware ESXi 6.7

Hi,

 

I have a Cortex XDR Pro per Endpoint and I downloaded the OVA to install a Broker VM.

The name of the OVA image that I downloaded from XDR management console is broker-vm-17.0.52.ova.

The problem is that OVA image is vmx-19 and is not compatibl

...

CMocanu by L1 Bithead
  • 188 Views
  • 4 replies
  • 0 Likes

Cortex XDR not detecting malicious files

Hi ,
Why Cortex XDR is not detecting malicious files which are present in system.
for testing purpose I have downloaded a test malware also but it is not reflected after the malware scan.Can anyone please give clarity on this.
Does Cortex detects malici

...