Cortex XDR

Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all Palo Alto Networks products in one place.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Cortex XDR

Welcome to the Cortex XDR LIVEcommunity! Explore how-to guides, best practices, and on-demand videos to help you get the most out of Cortex XDR. Have questions or insights to share? Join the conversation in our Discussions forums and connect with our Product Experts.

Stay in the loop—subscribe now to get the latest product updates delivered to you.

Articles

Cortex XDR CS Newsletter June 2024 Contains an image Contains a hyperlink

06-13-2024 — Don't miss our monthly announcements, How-to Videos, and latest blogs in the Customer Success What's New Newsletter! — Read more

Labels: Cortex XDR XDR Newsletter
2199 published by in Cortex XDR Articles
06-13-2024 edited by

Cortex XDR CS Newsletter May 2024 Contains an image Contains a hyperlink

05-09-2024 — Read all the latest and greatest from Cortex XDR Customer Success! — Read more

Labels: Cortex XDR XDR Newsletter
2104 published by in Cortex XDR Articles
05-09-2024 edited by

Cortex XDR CS Newsletter April 2024 Contains an image Contains a hyperlink

04-10-2024 — April 2024 UPCOMING EVENTS Alert Tuning Webinar Series Join us for a Customer Success webinar series, Alert Tuning, starting on April 24! You may register below for the series in advance. Register here: Part 1 | Part 2 Symphony 2024: AI and Automation Come see where security operations are heade... — Read more

Labels: Cortex XDR XDR Newsletter
2112 published by in Cortex XDR Articles
04-10-2024 edited by

Cortex XDR CS Newsletter March 2024 Contains an image Contains a hyperlink

03-18-2024 — March 2024 UPCOMING EVENTS Parsing and Correlation Rules Webinar Series Register now for the last part of the webinar series: Parsing & Correlation Rules - Improving Application Security with Correlations. Register here: Part 3 Investigation and Threat Hunting Virtual Workshop Calling all custome... — Read more

Labels: Cortex XDR
2332 published by in Cortex XDR Articles
03-18-2024 edited by

Cortex XDR CS Newsletter Feb 2024 Contains an image Contains a hyperlink

02-16-2024 — February 2024 UPCOMING EVENTS Parsing and Correlation Rules Webinar Series Register now for Part 2 of the webinar series: Correlation Rules - the core of detection. You may review the recording for Part 1 in the On-Demand section below Register here: Part 2 | Part 3 Investigation and Threat Hunti... — Read more

Labels: Cortex XDR
2431 published by in Cortex XDR Articles
02-16-2024 edited by

Blogs

SecOps Insider-April Edition Contains an image Contains a hyperlink

04-30-2025 — Discover key insights from Sam Rubin, SVP of Consulting and Threat Intelligence at Unit 42, on the critical importance of cyber resilience highlighted in the 2025 Global Incident Response Report. Get recommendations for enhancing incident response... — Read more

Labels: Cortex Cortex XDR Cortex Xpanse Cortex XSIAM Cortex XSOAR Cybersecurity Prisma Cloud SecOps Security Operations Unit 42 XDR Xpanse
643 by in Community Blogs

Threat Brief: CVE-2024-6387 OpenSSH RegreSSHion Vulnerability Contains an image Contains a hyperlink

07-15-2024 — On July 1, 2024, a critical signal handler race condition vulnerability was disclosed in OpenSSH servers (sshd) on glibc-based Linux systems. This vulnerability, called RegreSSHion and tracked as CVE-2024-6387, can result in unauthenticated remote... — Read more

Labels: Cortex XDR Cortex Xpanse Cortex XSIAM Cortex XSOAR CVE-2024-6387 incident response OpenSSH OpenSSH. RegreSSHion RegreSSHion Remote Code Execution security intelligence SOC SSH threat brief Threat Detection Vulnerability
17309 by in Community Blogs

Introducing the New Cortex Shellcode AI Protection: A Precision AI-Driven Module Contains an image Contains a hyperlink

07-15-2024 — In this write-up, we will dive into the realm of shellcode and examine how our AI-driven approach is once again raising the bar when it comes to threat detection and prevention. — Read more

Labels: Cortex Cortex XDR Precision AI shellcode
4616 1 by in Community Blogs

What’s Next in Cortex - New Wave of Innovations in Cortex (June 2024 Release) Contains an image Contains a hyperlink

07-03-2024 — ith the ever evolving threat landscape, security operations teams require a new level of efficiency to protect their organizations. The latest release across Cortex products aims to solve a diverse set of challenges in security operations, all whi... — Read more

Labels: Cortex Cortex XDR Cortex Xpanse Cortex XSIAM Cortex XSOAR Release Notes XDR Xpanse XSIAM XSOAR
5839 by in Community Blogs

Palo Alto Networks Excels in MITRE Managed Services Evaluation Contains an image Contains a hyperlink

06-25-2024 — Palo Alto Networks Unit 42 is a leader in MDR, delivering MTTD twice as fast as the average participant and leveraging the industry’s best XDR technology. — Read more

Labels: Cortex XDR XDR
2064 by in Community Blogs

Digital Learning Courses

Access Palo Alto Networks learning platform to gain technical insights and educational materials across our full suite of products.

Please note: SSO login is necessary to access the content.

Videos

06-26-2024 Cortex XDR Customer Success Webinar: Threat Hunting Methodologies Contains an image Contains a video Contains a hyperlink

05-30-2024 Cortex XDR Customer Success Webinar Series Part 2: Alert Tuning Use Cases Contains an image Contains a video Contains a hyperlink

04-24-2024 Cortex XDR Customer Success Webinar Series Part 1: Alert Tuning Fundamental Contains an image Contains a video Contains a hyperlink

Discussions

Need answers? Register or Sign-in to Engage, Share, and Learn.
Author Topic Views Replies
07-17-2025

Create Alert from Data Lookup

Hello everyone,I have a reference dataset from IBM QRadar that I’ve stored as a lookup dataset. My goal is to create an alert if a malicious file is d... — Read more

posted in Cortex XDR Discussions

5 0
07-16-2025

Solved! IP Adress Not Show When Use XDR Collector Contains an image

Hello everyone, I have a question. I'm using the XDR Collector to ingest log data from both Linux and Windows servers, but some server IP addresses ar... — Read more

posted in Cortex XDR Discussions

76 1
07-16-2025

How to Deliver Upgrades to Endpoints with a Connection Lost Status

Dear Community, I am encountering a challenge with the XDR agent upgrades. Although we distribute updates through the Action Center, agents in a "Conn... — Read more

posted in Cortex XDR Discussions

141 2
07-15-2025

Cortex XDR Dataset - Total Days Stored Contains an image Contains a hyperlink

Hello All, Can anyone explain as to why a dataset that is a subset of the xdr_data dataset may have a total days stored value less than the xdr_dat... — Read more

posted in Cortex XDR Discussions

137 1
07-14-2025

Solved! Best Practice Prevention Rule for Cortex XDR Pro

Dear Everyone, I would like to know if is there any reference for Best Practice Cortex XDR ? since I was checking document not able to fine the best... — Read more

posted in Cortex XDR Discussions

150 2