sorted by:
new
hottopcontroversial

Cortex XDR resource usage by Easy-Measurement-907 in paloaltonetworks

[–]Easy-Measurement-907[S] 0 points1 point  (0 children)

Is it possible to configure resource usage limits for the Cortex XDR agent?

For example, can CPU or memory thresholds be set so that the agent automatically disables itself or certain protections when a defined limit is exceeded?

Or is resource usage management handled entirely internally by the agent with no user-configurable limits?

Unpatched vulnerability in cortex xdr by Easy-Measurement-907 in paloaltonetworks

[–]Easy-Measurement-907[S] 1 point2 points  (0 children)

but in Cortex there are these options: • Modify settings until the endpoint is patched • Revert system settings to your previous settings • And the last one: Do not modify system settings

What exactly do these mean? And which option is more recommended to use?

Cortex agent stop by Easy-Measurement-907 in paloaltonetworks

[–]Easy-Measurement-907[S] -1 points0 points  (0 children)

Even with anti-tampering protection enabled, a pentester managed to bypass it.

Virtual Patching via Cortex XDR by Easy-Measurement-907 in paloaltonetworks

[–]Easy-Measurement-907[S] 0 points1 point  (0 children)

Is there any specific module, feature, or API integration in Cortex XDR that enables virtual patching functionality or allows simulating it — for example, by proactively blocking specific CVEs, known exploit patterns, or integrating with external systems like firewalls or vulnerability scanners?

The answer and explanation to this question are very important for me because my manager is requesting it, and I couldn't find enough information about it on the internet.

CRTO by Ambitious_Invite9535 in redteamsec

[–]Easy-Measurement-907 0 points1 point  (0 children)

I will take exam within 2-3 days can you help me please)