This website uses cookies essential to its operation, for analytics, and for personalized content. By continuing to browse this site, you acknowledge the use of cookies.
For details on cookie usage on our site, read our Privacy Policy
Accept
Reject
Security Operations
Palo Alto Networks delivers industry-first, category-defining technologies by focusing on product development and innovation. Cortex solutions have transformed security operations by continuously bringing new features to market that boost security efficacy and disrupt the status quo.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Security Operations
Palo Alto Networks delivers industry-first, category-defining technologies by focusing on product development and innovation. Cortex solutions have transformed security operations by continuously bringing new features to market that boost security efficacy and disrupt the status quo.

Browse the Community

Cortex XDR

Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all Palo Alto Networks products in one place.

6 Posts

Cortex XSOAR

Cortex XSOAR by Palo Alto Networks enables SOC analysts to manage alerts across all sources, standardize processes with Cortex XSOAR playbooks, take action on threat intel, and automate response for any security use case.

88 Posts

Cortex Data Lake

Cortex Data Lake provides cloud-based, centralized log storage and aggregation for your on premise, virtual firewalls, and cloud-delivered services.

Cortex Xpanse

Welcome to the Cortex Xpanse resource page. Cortex Xpanse allows you to 'know your Internet' by providing you with an outside-in view of your Internet attack surface.

3 Posts

Cortex XSIAM

Resources for Cortex XSIAM, Palo Alto Networks’ autonomous security platform powering the Modern SOC.

Activity in Security Operations

Start a conversation

Cortex XSOAR New Content Pack Release - May 23'

New Content Packs Release

For more info on use cases, integrations, and related documentation, click on the Pack title:

 

ForcepointDLP
Forcepoint DLP event collector

 

Free Feeds
This content Pack helps set up free feeds (Plug & Fetch, Free with sign

...

rtsedaka by L4 Transporter
  • 21 Views
  • 0 replies
  • 0 Likes

Cortex XSOAR New Content Pack Release - April 23'

New Content Packs Release

For more info on use cases, integrations, and related documentation, click on the Pack title:

3CXDesktopApp Supply Chain Attack
This pack handles 3CXDesktopApp Supply Chain Attack investigation and response

 

EDL Monitor
This

...

rtsedaka by L4 Transporter
  • 2012 Views
  • 0 replies
  • 0 Likes

Cortex XSOAR 6.11 is now GA

The latest version of Cortex XSOAR is now available for GA.

Here are some highlights from this release:

  • Improved Upgrade Process for Multi-Tenant Deployments.

  • After deleting a user, you can now clear the user's data from content, such as active inc
...

Cortex XSOAR Python Development Guide

Python Development Quick Start

 

The Marketplace content packs provide out-of-the-box (OOTB) integrations and playbooks supported by a common base of commands and automation scripts. While automations support JavaScript and PowerShell, the most comp

...

rtsedaka by L4 Transporter
  • 2258 Views
  • 0 replies
  • 0 Likes

Content Release Notes

Cortex XDR Content Release Notes

May 30 2023 Release:

  • Improved logic of 3 High Analytics BIOCs:
    • Suspicious API call from a Tor exit node (ac17179d-68dd-46cc-8d2a-68d506e6626e) - improved logic of a High Analytics BIOCs
    • A successful SSO sign-in from TO
...

vcotton by L3 Networker
  • 1998946 Views
  • 29 replies
  • 12 Likes

XSOAR Use Case Definition Template

XSOAR Use Case Definition (UCD) Template

This template will help you understand and leverage the UCD to benefit implementation strategy, understand how your IR process fits into XSOAR, and identify integrations for ingestion/enrichment needed. The X

...

Cortex XDR PoC: Software Installations Blocking

 

In this proof of concept (PoC), we'll take a look at using Cortex XDR to block software installations in a test environment.

 

This PoC focuses on blocking files that use the .msi and .exe file extensions. These file types are widely used for comm

...

rtsedaka_14-1670437404874.png
rtsedaka_15-1670437404938.png
rtsedaka_0-1672679859977.png
rtsedaka_17-1670437404810.png
rtsedaka by L4 Transporter
  • 3941 Views
  • 3 replies
  • 1 Likes

Cortex XSOAR 6.6 is now GA

The newest version of Cortex XSOAR is now available for GA.


Here are some highlights from this release:
  • Indicator field Trigger Scripts:
    Associate indicator fields with trigger automation scripts that check for field changes, and then take actions ba
...

Load more
Register or Sign-in
Top Liked Posts
View All
Top Contributors
Top Liked Authors
View All
LEGAL NOTICES
RESOURCES
Copyright 2007 - 2023 - Palo Alto Networks