Hello community,
Do you know if Cortex XDR has the capability to capture full URL visits please? Can you please share any documentations saying so if yes.
Thanks.
Hello everyone,
I would like to know if any of you have struggled with support and technical cases with the need I show below.
I would like to know what you can tell me or give me your opinion about taking action against powershell cmdlets.
After sev
...
Which method should be used to install the Cortex XDR agents for the Azure-only Windows 11 multi-session VDI? Since it's both a terminal server, and a non-persistent VDI that gets re-imaged from a golden image?
Hi everyone,
If an event is triggered in a computer without connection, nothing is sent to the console when the computer recovers the connection.
My concern is how I will be alerted if something happens when a computer have no network.
I realiz
...
Helllo everybody,
I have a Cortex XDR Pro per GB and I've acquired a "Forensics" free trial license, which expired yesterday. I need to access the results of the forensics, would i be able to do it? or do i need to renew my license?
Awaiting any
...
All versions of GitButler are falsely flagged by Cortex XDR.
The corresponding GitHub issue can be found here: https://github.com/gitbutlerapp/gitbutler/issues/3518
The hash is related to version 0.11.1
Component: WildFire
Cortex XDR code: C040005
am 04-08-2024 11:02 AM
Hello, I don't know if I'm in the right place...
I would like to integrate our Cortex XDR dashboard into Grafana. I know this is possible via an API, but which connec
Hi everyone,
Just wondering how's the performance or resource is impacted when this protection is on, i bet it would have certain impact as this is "Disabled" by default. or any other concerns if ON?
Any experience to share?
thanks
Is it possible to create an automation script or rule to add a remote IP address to an EDL in Cortex XDR? I'm exploring the best way to handle this. For example, after the recent CVE-2024-3400 disclosure, I patched my firewalls, and all is good. H
...
Hi,
I synchronise our on perm Active Directory to the Cortex XDR and this is working well. I'm creating some reports using XQL quires based on pan_dss_raw dataset. My only problem with this, that in the Schema I can't find computer's "Description" wh
...
Hello dear community,
we would like to ingest logs for more visibility.
Actually we have Cortex XDR Pro.
How does the upgrade path look like to get the ability to ingest FW and Windows Event logs?
How much more we need to pay and how does the l
...
Hello dear community,
here is a script for searching specific scheduled tasks by name in mass. The search is via LIKE and wildcards are used.
import subprocess
import sys
def ScheduledTask(scheduler_name):
# PowerShell-Befehl mit Where-Ob...
How can we integrate Unit 42 Palo Alto with SIEM particularly Microsoft Sentinel?
Regards,
Shashank
Hello Folks,
In the Cortex API documentation there is not mention of how to make BIOC rules using APIs or how to access them.
I was wondering if anyone has been able to use the API to create BIOC rules.
Hi All,
We have a requirement to create a ServiceNow ticket by taking the slack user responses.
I have built a playbook which does send the SlackBlockBuilder to the specified Slack channel but the playbook runs only when an incident is attached to it
...
