Cortex XDR
Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all Palo Alto Networks products in one place.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.

Cortex XDR

Welcome to the Cortex XDR resource page. Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all Palo Alto Networks products in one place. On this page you can engage in Cortex XDR discussions and review helpful resources dedicated to Cortex XDR.

Discussions

Need answers? Register or Sign-in to Engage, Share, and Learn.
Author Topic Views Replies
04-18-2024

Cortex XDR Pro licensing models

Hi everyone! Please, could anyone point to a document or page that has all the Cortex XDR Pro licensing models? Thanks in advance. Cortex XDR

posted in Cortex XDR Discussions

93 2
04-18-2024

NTA in XDR

Hi All, We want to enable this feature on XDR, can someone please guide us with the pre-requisites and what steps need to be followed to enable this... — Read more

posted in Cortex XDR Discussions

58 0
04-17-2024

Move Cortex XDR agent from one tenant to another (and back)

When we move an agent to a new management server, what would happen to the logs and telemetries we have on the old tenant? Would they be retained as p... — Read more

posted in Cortex XDR Discussions

101 1
04-17-2024

XQL query help event id

Looking for xql query to find folder name change or folder move event id on particular server.

posted in Cortex XDR Discussions

104 1
04-17-2024

XDR - Unable to clear user's APPDATA

Unable to clear user's APPDATA...for tshoot (application upgraded) we need delete all files and folder on users APPDATA , but the system prevent this.... — Read more

posted in Cortex XDR Discussions

117 2

Articles

Cortex XDR CS Newsletter April 2024

04-10-2024 — April 2024 UPCOMING EVENTS Alert Tuning Webinar Series Join us for a Customer Success webinar series, Alert Tuning, starting on April 24! You may register below for the series in advance. Register here: Part 1 | Part 2 Symphony 2024: AI and Automation Come see where security operations are heade... — Read more

Labels: Cortex XDR XDR Newsletter
156 published by in Cortex XDR Articles
04-10-2024 edited by

Cortex XDR CS Newsletter March 2024

03-18-2024 — March 2024 UPCOMING EVENTS Parsing and Correlation Rules Webinar Series Register now for the last part of the webinar series: Parsing & Correlation Rules - Improving Application Security with Correlations. Register here: Part 3 Investigation and Threat Hunting Virtual Workshop Calling all custome... — Read more

Labels: Cortex XDR
350 published by in Cortex XDR Articles
03-18-2024 edited by

Cortex XDR CS Newsletter Feb 2024

02-16-2024 — February 2024 UPCOMING EVENTS Parsing and Correlation Rules Webinar Series Register now for Part 2 of the webinar series: Correlation Rules - the core of detection. You may review the recording for Part 1 in the On-Demand section below Register here: Part 2 | Part 3 Investigation and Threat Hunti... — Read more

Labels: Cortex XDR
431 published by in Cortex XDR Articles
02-16-2024 edited by

Cortex XDR Newsletter Jan 2024

01-10-2024 — January 2024 UPCOMING EVENTS Parsing and Correlation Rules Webinar Series Register now for our upcoming webinar series: Parsing and Correlation Rules - from Fundamentals to Practical Applications, starting on Jan 31st. Register below: Part 1 | Part 2 | Part 3 Investigation and Threat Hunting Virt... — Read more

Labels: Cortex XDR
962 published by in Cortex XDR Articles
01-10-2024 edited by

Cortex XDR CS Newsletter Dec 2023

12-14-2023 — Check out the latest updates, upcoming events, and the newest educational videos! — Read more

Labels: Cortex XDR
701 1 published by in Cortex XDR Articles
12-14-2023 edited by

Blogs

On Credible and Cyber-Contextual Labeling

04-11-2024 — Machine learning (ML) powered methods are rapidly taking over the cybersecurity medium, performing a variety of complex tasks, including detection, prevention, and prioritization. — Read more

Labels: Cortex XDR Incidents labels ML Threat Detection XDR
248 by in Community Blogs

5 Unique Challenges for AI in Cybersecurity

03-25-2024 — AI tends to be understood as one coherent field of study and application where similar solutions apply for all the use cases. The reality is that applying AI in real-world environments with high precision requires specialization in the specific fi... — Read more

Labels: Cortex XDR Cortex XSIAM XDR XSIAM
1457 1 1 by in Community Blogs

Playbook of the Week: Automating Management of XDR Identity Analytics Alerts

03-18-2024 — Identity analytics is a critical cybersecurity tool in combating the challenges posed by compromised user accounts and malicious insiders. Identity threats are pervasive across organizations of all sizes and industries, potentially exposing sensit... — Read more

Labels: Cortex Cortex XDR Cortex XSOAR
1243 1 by in Community Blogs

Playbook of the Week: Streamlining the Management of XDR Incidents

11-17-2023 — The new Cortex XDR Lite - Incident Handling playbook is a new addition to the Palo Alto Networks Cortex XDR - Investigation and Response content pack. Used as the default playbook in this content pack, it streamlines incident response workflows fo... — Read more

Labels: Cortex XDR playbook of the week. Cortex XSOAR
2531 1 by in Community Blogs

See the Future with Cortex XSIAM 2.0 - Watch the On Demand Webinar

11-16-2023 — The AI-Driven SOC is Here! Click to watch the on-demand webinar — Read more

Labels: Cortex XDR Cortex XSIAM Cortex XSOAR Event calendar events
2424 by in Community Blogs

cortex-xdr-release-notes

Videos

Digital Learning Courses

Visit Palo Alto Networks' learning platform, Beacon, for free technical knowledge and educational resources related to all of our products.

Please note: You need to be logged into SSO in order to view this content.