Browse the Community

Cortex XDR

Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all Palo Alto Networks products in one place.

20 Posts

Cortex XSOAR

Cortex XSOAR by Palo Alto Networks enables SOC analysts to manage alerts across all sources, standardize processes with Cortex XSOAR playbooks, take action on threat intel, and automate response for any security use case.

44 Posts

Cortex Xpanse

Welcome to the Cortex Xpanse LIVEcommunity! Explore how-to guides, best practices, and on-demand videos to help you get the most out of Cortex Xpanse. Have questions or insights to share? Join the conversation in our Discussions forums and connect with our Product Experts. Stay in the loop—subscribe now to get the latest product updates delivered t...

3 Posts

Cortex XSIAM

Resources for Cortex XSIAM, Palo Alto Networks’ autonomous security platform powering the Modern SOC.

XSOAR with Generative AI and Retrieval Augmented Generation

Randy Uhrlaub, Cortex XSOAR Customer Success Architect

Table Of Content

Introduction
Retrieval Augmented Generation
Text Search Augmented Generation
Anything LLM XSOAR Content Pack
Customer InfrastructureHosted
Cloud Hosted
Customer InfrastructureSetu

...

Getting Started with your XDR Deployment and Useful Resources

Cortex XDR and XSIAM Postman API Collection

What is Postman?

Postman is the collaboration platform for API development. Postman simplifies each step of building an API and streamlines collaboration so you can create better APIs faster, you can download the postman community edition now.

...

Creating Custom Docker Images in XSOAR 8

By Brad Semma, Cortex XSOAR Customer Success Architect

When to customize and when not to customize

Cortex XSOAR customers love to customize their instances. If a customer decides to customize an integration, they may find the assigned docker i

...

XSOAR 8 Cloud Content Performance Analysis

By Randy Uhrlaub, Customer Success Architect

Table Of Content

Review Data
Settings and Info
Guardrails
System Diagnostics
Integrations
Dashboards
Incidents
Dashboards
Automation Performance Analysis
Dashboards
Playbook Performance Analysis
Resources

Revi

...

Troubleshoot XDR Agent Degraded Operational Status with XQL

The Operational Status of your XDR Agents is a crucial aspect to monitor to ensure your environment stays protected. The Operational Status indicates whether the agent is providing protection according to its predefined security policies and prof

...

XSOAR 8 Migration - Everything You Need to Know!

Starting to Plan for XSOAR 8 Migration?

It's time to take a deep dive into our Cortex XSOAR 8 Migration Guide! Our team crafted this comprehensive guide to ensure that you're well-prepared for the migration journey ahead.

By reviewing the XSOAR

...

Cortex XSOAR Newsletter July 2024

July 2024

UPCOMING EVENTS

Customer Success Webinar: On-Prem v6 Migration to v8 SaaS

Join us on July 24th to learn everything you need about the on-prem migration to the XSOAR 8 SaaS.

>>Register here

CS Webinar Topics Suggestion Survey

We va

...

Cortex XSOAR New Content Pack Release - June 2024

New Content Packs Release

For more info on use cases, integrations, and related documentation, click on the Pack title:

GoogleThreatIntelligence
Analyze suspicious hashes, URLs, domains, and IP addresses.

GitHub Feed
A feed to ingest indicators of

...

Cortex XSOAR CS Newsletter June 2024

June 2024

UPCOMING EVENTS

Customer Success Webinar Series: Proactive Threat Hunting Part 2

The event concluded on June 12, 2024. Visit our events page later this month to learn about our next event.

CS Webinar Topics Suggestion Survey

We va

...

Cortex XDR CS Newsletter June 2024

June 2024

UPCOMING EVENTS

Threat Hunting with XDR

Calling all incident responders and forensic investigators to join us on June 26th for a Customer Success webinar and learn about Threat Hunting!
>>Register here

Investigation and Threat Hun

...