This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community experience. Read our Privacy Policy. Click Preferences to customize your cookie settings.
Welcome to the Cortex XSIAM resources page. Cortex XSIAM, the autonomous security platform powering the Modern SOC, operates across both cloud and enterprise security operations, providing true end-to-end-management of threats wherever they originate. This page provides information and resources to make your Palo Alto Networks journey as simple as possible. Ask your questions, find answers, connect with peers, and get access to troubleshooting resources all in one place.
Hello,
I was wondering if someone could help point me in the right direction for setting up a custom alert in XSIAM when a user is removed from Azur... —
Read more
Hi guys, i need a little help.
Is there any dataset that contain all the correlations rules created?Or can I retrieve all correlations rules via XQL... —
Read more
Hi Team,
I was searching some logs and I found the query I was running initially was just different from the later (2nd) query, however, I was not get... —
Read more
Hello Everyone,
We have "creation time" field in the incidents dataset. I wanted to query the "incidents" dataset for the specific date ranges of cr... —
Read more
04-25-2024
—
As cloud computing continues to evolve and becomes the ad-hoc standard
for many of the world’s largest enterprises, we also see attack surfaces
growing and the escalation of cyberthreats targeting the cloud and
traditional enterprise assets. These... —
Read more
Labels:
CDR CloudCortex XDRCortex XSIAMDetection and ResponseXDRXSIAM 12
by
emgarciain Community Blogs
04-24-2024
—
This threat brief is frequently updated as new threat intelligence is
available for us to share. The full update log is at the end of this
post and offers the fullest account of all changes made. —
Read more
Labels:
CortexCortex XDRCortex XpanseCortex XSIAMthreat briefThreat Briefs and Assessmentsunit 42unit42 208
by
emgarciain Community Blogs
04-16-2024
—
Security operations teams are tasked with solving a variety of different
challenges. They face the complexities of protecting growing and dynamic
cloud environments; investigating and resolving security incidents
quickly; proactively managing risk... —
Read more
03-25-2024
—
AI tends to be understood as one coherent field of study and application
where similar solutions apply for all the use cases. The reality is that
applying AI in real-world environments with high precision requires
specialization in the specific fi... —
Read more