This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy. Click Preferences to customize your cookie settings.
Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all Palo Alto Networks products in one place.
Welcome to the Cortex XDR resource page. Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all Palo Alto Networks products in one place. On this page you can engage in Cortex XDR discussions and review helpful resources dedicated to Cortex XDR.
Hi i am trying to craft a query for bruteforce based on 30min timeframe with threshold of more than 5 failed login attempts. But i am having trouble f... —
Read more
Hello,
The XDR Analytics BIOC alerts are created based on for example rare events that occur in your environment.
Is there a way to influence the ... —
Read more
In case of hybrid environment,Can we send data to CIE instance from both Azure AD as well as on-prem AD as it supports both.
Or it is enough if we sen... —
Read more
Hello,
Regarding BrokerVM FQDN configuration the docs & BrokerVM configuration page states:"The Broker VM FQDN settings affect the WEC and Agent... —
Read more
04-10-2024
—
April 2024
UPCOMING EVENTS
Alert Tuning Webinar Series
Join us for a Customer Success webinar series, Alert Tuning, starting on
April 24! You may register below for the series in advance.
Register here: Part 1 | Part 2 Symphony 2024: AI and Automation Come see
where security operations are heade... —
Read more
03-18-2024
—
March 2024
UPCOMING EVENTS
Parsing and Correlation Rules Webinar Series
Register now for the last part of the webinar series: Parsing &
Correlation Rules - Improving Application Security with Correlations.
Register here: Part 3 Investigation and Threat Hunting Virtual Workshop
Calling all custome... —
Read more
02-16-2024
—
February 2024
UPCOMING EVENTS
Parsing and Correlation Rules Webinar Series
Register now for Part 2 of the webinar series: Correlation Rules - the
core of detection. You may review the recording for Part 1 in the
On-Demand section below Register here: Part 2 | Part 3 Investigation and
Threat Hunti... —
Read more
07-15-2024
—
On July 1, 2024, a critical signal handler race condition vulnerability
was disclosed in OpenSSH servers (sshd) on glibc-based Linux systems.
This vulnerability, called RegreSSHion and tracked as CVE-2024-6387, can
result in unauthenticated remote... —
Read more
Labels:
Cortex XDRCortex XpanseCortex XSIAMCortex XSOARCVE-2024-6387OpenSSHRegreSSHionRemote Code ExecutionSSHthreat brief 7257
by
rtsedakain Community Blogs
07-15-2024
—
In this write-up, we will dive into the realm of shellcode and examine
how our AI-driven approach is once again raising the bar when it comes
to threat detection and prevention. —
Read more
07-03-2024
—
ith the ever evolving threat landscape, security operations teams
require a new level of efficiency to protect their organizations. The
latest release across Cortex products aims to solve a diverse set of
challenges in security operations, all whi... —
Read more
Labels:
Cortex XDRCortex XpanseCortex XSIAMCortex XSOARXDRXpanseXSIAMXSOAR 3129
by
GonenFinkin Community Blogs
06-25-2024
—
Palo Alto Networks Unit 42 is a leader in MDR, delivering MTTD twice as
fast as the average participant and leveraging the industry’s best XDR
technology. —
Read more
06-11-2024
—
Today, we are excited to announce that Cortex XDR has been recognized as
a Leader in The Forrester Wave™: Extended Detection and Response (XDR)
Platforms, Q2 2024. —
Read more