Cortex XDR Pro Vs. MITRE ATT&CK Matrix for Enterprise

Showing results for 
Show  only  | Search instead for 
Did you mean: 
Please sign in to see details of an important advisory in our Customer Advisories area.
Community Team Member

General Graphics.jpg


Are you familiar with the MITRE ATT&CK Matrix for Enterprise? If not, it’s a knowledge base of adversary tactics and techniques based on real-world observations. The column headings represent ATT&CK Tactics, while the boxes below represent the techniques adversaries utilize to achieve them. It’s an essential piece for cybersecurity teams to use within an organization to evaluate their defenses. 


Screen Shot 2022-11-04 at 12.41.25 AM.png


AV-Comparatives, an organization that tests and assesses anti-viruses, developed the most comprehensive endpoint prevention and response (EPR) test. The diagram above highlights 50 attack scenarios in which Cortex XDR Pro and competitors were up against. The adversarial techniques were orchestrated into a three-phase attack. If an EPR product didn't block an attack, the result would leave an Enterprise with massive losses due to collection, command and control, and exfiltration.


Screen Shot 2022-11-04 at 1.31.27 AM.png


If you currently have Cortex XDR Pro deployed in your environment, you are less likely to experience such losses. Cortex XDR Pro successfully blocked an attack from an asset breach. No C2 channels were established and no exfiltration of data! Check out the Palo Alto Networks Cortex XDR Product Validation Report for a deep dive into each attack and see how Cortex performed against them. 


If you're interested in how Cortex XDR Pro performed against its competitors, check out the AV-Comparatives Endpoint Prevention and Response EPR (EPR) Comparative Report.


Have you experienced an attack where Cortex XDR successfully defended your network? Feel free to share any experiences you might have in the comments below.


Thanks for reading. @JayGolf out!


Register or Sign-in
Top Liked Authors