Skip to main content

PaloAlto Cortex XSOAR Cortex Plugin

The PaloAlto XSOAR/XSIAM - Cortex Plugin allows you to obtain a detailed report from CrowdSec's CTI smoke database.


The integration is available directly from within Cortex XSOAR.


Once the CrowdSec enrichment is activated, your incidents will benefit from CrowdSec's CTI data on the incident's IP.
Incident Info Main

Date of the incident and attack details will be visible in the quick view and the full view.
Incident Summary
Source Details