This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy. Click Preferences to customize your cookie settings.
Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all Palo Alto Networks products in one place.
Welcome to the Cortex XDR resource page. Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all Palo Alto Networks products in one place. On this page you can engage in Cortex XDR discussions and review helpful resources dedicated to Cortex XDR.
Hello-Is there a limit to the number of devices that can be listed within the Permanent Exceptions? Endpoints -> Policy Management -> Extension... —
Read more
We enable ELA on our NGFWs, forward logs to SLS, and also ingest the SLS logs into our XDR tenant.Is there a way to verify in the XDR tenant or SLS th... —
Read more
Hello Everyone, I want to fetch all assets from asset inventory using XQL query but I am unable to find a suitable dataset for it. Can someone please ... —
Read more
I have a lookup with software names and want to use it to compare it to results from xdr_data using the fields actor_process_image_path which is the d... —
Read more
Hi everyone, i have an issue. Cortex receives data from data sources (endpoints, servers etc) but i can not see alerts and incidents. My dashbord show... —
Read more
04-10-2024
—
April 2024
UPCOMING EVENTS
Alert Tuning Webinar Series
Join us for a Customer Success webinar series, Alert Tuning, starting on
April 24! You may register below for the series in advance.
Register here: Part 1 | Part 2 Symphony 2024: AI and Automation Come see
where security operations are heade... —
Read more
03-18-2024
—
March 2024
UPCOMING EVENTS
Parsing and Correlation Rules Webinar Series
Register now for the last part of the webinar series: Parsing &
Correlation Rules - Improving Application Security with Correlations.
Register here: Part 3 Investigation and Threat Hunting Virtual Workshop
Calling all custome... —
Read more
02-16-2024
—
February 2024
UPCOMING EVENTS
Parsing and Correlation Rules Webinar Series
Register now for Part 2 of the webinar series: Correlation Rules - the
core of detection. You may review the recording for Part 1 in the
On-Demand section below Register here: Part 2 | Part 3 Investigation and
Threat Hunti... —
Read more
07-15-2024
—
On July 1, 2024, a critical signal handler race condition vulnerability
was disclosed in OpenSSH servers (sshd) on glibc-based Linux systems.
This vulnerability, called RegreSSHion and tracked as CVE-2024-6387, can
result in unauthenticated remote... —
Read more
Labels:
Cortex XDRCortex XpanseCortex XSIAMCortex XSOARCVE-2024-6387OpenSSHRegreSSHionRemote Code ExecutionSSHthreat brief 10120
by
rtsedakain Community Blogs
07-15-2024
—
In this write-up, we will dive into the realm of shellcode and examine
how our AI-driven approach is once again raising the bar when it comes
to threat detection and prevention. —
Read more
07-03-2024
—
ith the ever evolving threat landscape, security operations teams
require a new level of efficiency to protect their organizations. The
latest release across Cortex products aims to solve a diverse set of
challenges in security operations, all whi... —
Read more
Labels:
Cortex XDRCortex XpanseCortex XSIAMCortex XSOARXDRXpanseXSIAMXSOAR 3570
by
GonenFinkin Community Blogs
06-25-2024
—
Palo Alto Networks Unit 42 is a leader in MDR, delivering MTTD twice as
fast as the average participant and leveraging the industry’s best XDR
technology. —
Read more
06-11-2024
—
Today, we are excited to announce that Cortex XDR has been recognized as
a Leader in The Forrester Wave™: Extended Detection and Response (XDR)
Platforms, Q2 2024. —
Read more