How do you or your organization use this solution?
Please share with us so that your peers can learn from your experiences.
Cortex XDR is used for endpoint detection and response. This is software placed into endpoints and work in this cloud. In cloud has the analytics, login, prevention models, et cetera.
We use this solution to secure endpoints and to have more visibility on what is happening on the endpoints. We have two customers who are using this solution currently.
We use this solution specifically in endpoint response, endpoint detection, endpoint sandboxing, and as a firewall.
We're primarily a Palo Alto shop, and we integrate solutions in the Palo Alto ecosystem. But for firewalls and threat hunting, it's all through Cortex XDR. We also compliment the Cortex XDR product with other endpoint protection solutions, like Windows Defender, or whatever the customer is using,
We use Cortex XDR by Palo Alto Networks for its ability to detect based on behavior rather than simple virus scan to prevent malicious activities. We also use it to go in and white list things that are okay. This way, they won't get blocked.
We use it for our own company as well for our clients. It is mainly used for protecting the endpoints. Like everybody else nowadays, we're all working from home, and we have access to data on the public cloud, private cloud, and on-prem. We got to make sure that we're not exposing our endpoints to anything out there that could be malicious and that could cause any problems within our networking environment.
We are a solution provider and one of the Palo Alto products that we implement for our clients is Cortex XDR (Extended Detection and Response). It is also known as Traps, and it is mostly used for endpoint protection. For example, when remote users want to connect to their organization using a VPN, they will be protected.
We mainly use it for endpoint protection, exploit prevention, and malware prevention.
We primarily use the product as endpoint security which we have deployed on all servers and locations. This is not limited to the endpoint, however, as it has further integration with the firewalls and email solutions. Therefore, it can give us quick visibility in case there is any malicious or suspicious activity happening.
This product is part of a package that makes up our security solution.
We had firewalls set up and it integrated but didn't meet with our regulations. We were using this solution for endpoint protection.
We are still in the testing stages so there is not currently any primary use case beyond the base use of endpoint protection.
I primarily use this solution for my clients. I don't use the solution myself.
We primarily use the solution for our endpoint server and endpoint protection.
We use Cortex XDR as part of our security solution.
We use Palo Alto Traps in our Windows-based environments. Currently, it only protects our desktops and we use it in conjunction with our Check Point firewall.
We use Palo Alto Networks Traps (Version 6) to protect our endpoints against NG malware via behavior analysis, artificial intelligence and machine learning. Both the PA Traps endpoint logs, our PA firewall traffic logs and the Wildfire sandbox are used to provide immediate threat response and feed this information to the PA Threat Intelligence cloud.
We used it for malware detection and to detect weird DNS calls. Overall, it was for endpoint protection.
I used the product at my previous company until November 2018.
So far, we have only done a PoC of Palo Alto Traps. We deployed Traps on a few devices and then did the PoC. I also attend a workshop for Palo Alto Traps. I learned how it works and how it can block malicious files, etc.
The primary use case is endpoint security. The product is my main endpoint, IP, and threat management.
We use it for primary endpoint protection.
Our primary use case is anti-malware and anti-exploit.
Advanced endpoint protection.
I'm researching XDR solutions. Which of these two solutions is better: FortiXDR or Cortex Pro?
What is the best for ransomware infection?