* [Blog](https://origin-researchcenter.paloaltonetworks.com/blog)
* [Security Operations](https://origin-researchcenter.paloaltonetworks.com/blog/security-operations/)
* [Partner Integrations](https://origin-researchcenter.paloaltonetworks.com/blog/security-operations/category/partner-integrations/)
* Farewell to 2021! A Look ...

# Farewell to 2021! A Look Back on the Cortex XSOAR Marketplace

[](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Forigin-researchcenter.paloaltonetworks.com%2Fblog%2Fsecurity-operations%2Ffarewell-to-2021-a-look-back-on-the-cortex-xsoar-marketplace%2F)  
[](https://twitter.com/share?text=Farewell+to+2021%21+A+Look+Back+on+the+Cortex+XSOAR+Marketplace&url=https%3A%2F%2Forigin-researchcenter.paloaltonetworks.com%2Fblog%2Fsecurity-operations%2Ffarewell-to-2021-a-look-back-on-the-cortex-xsoar-marketplace%2F)  
[](https://www.linkedin.com/shareArticle?mini=true&url=https%3A%2F%2Forigin-researchcenter.paloaltonetworks.com%2Fblog%2Fsecurity-operations%2Ffarewell-to-2021-a-look-back-on-the-cortex-xsoar-marketplace%2F&title=Farewell+to+2021%21+A+Look+Back+on+the+Cortex+XSOAR+Marketplace&summary=&source=)  
[](https://www.paloaltonetworks.com//www.reddit.com/submit?url=https://origin-researchcenter.paloaltonetworks.com/blog/security-operations/farewell-to-2021-a-look-back-on-the-cortex-xsoar-marketplace/&ts=markdown)  
\[\](mailto:?subject=Farewell to 2021! A Look Back on the Cortex XSOAR Marketplace)  
Link copied  
By [Rishi Bhargava](https://www.paloaltonetworks.com/blog/author/rishi-bhargava/?ts=markdown "Posts by Rishi Bhargava")  
Jan 19, 2022  
10 minutes  
[Partner Integrations](https://www.paloaltonetworks.com/blog/security-operations/category/partner-integrations/?ts=markdown)  
[Partners](https://www.paloaltonetworks.com/blog/category/partners/?ts=markdown)  
[Automation Playbooks](https://www.paloaltonetworks.com/blog/tag/automation-playbooks/?ts=markdown)  
[Cortex XSOAR](https://www.paloaltonetworks.com/blog/tag/cortex-xsoar/?ts=markdown)  
[Cortex XSOAR Marketplace](https://www.paloaltonetworks.com/blog/tag/cortex-xsoar-marketplace/?ts=markdown)  
[Partner Integrations](https://www.paloaltonetworks.com/blog/tag/partner-integrations/?ts=markdown)  
[protect your organization](https://www.paloaltonetworks.com/blog/tag/protect-your-organization/?ts=markdown)  
[Security Automation](https://www.paloaltonetworks.com/blog/tag/security-automation/?ts=markdown)  
[security orchestration](https://www.paloaltonetworks.com/blog/tag/security-orchestration/?ts=markdown)  
[SOAR content](https://www.paloaltonetworks.com/blog/tag/soar-content/?ts=markdown)  
[SOAR Innovation](https://www.paloaltonetworks.com/blog/tag/soar-innovation/?ts=markdown)  
[SOC](https://www.paloaltonetworks.com/blog/tag/soc/?ts=markdown)  
[XSOAR Content Packs](https://www.paloaltonetworks.com/blog/tag/xsoar-content-packs/?ts=markdown)

As we enter the new year, it's important to celebrate the progress we have made. When we launched the Cortex XSOAR Marketplace in August 2020, we couldn't have guessed how big it would become. 2021 brought new collaborators and hundreds of content packs. Today, we have **over 830 content packs** created both internally and externally.

As an innovator in the security market, it is our goal to provide security teams with the features and content they need to protect their organization and maintain operations no matter what comes their way. **Cortex XSOAR has launched over 500 content packs** to provide utility to our customers in many different ways. Additionally, **over 100 partners have provided seamless integrations** between their products and XSOAR to help security teams craft the perfect system. Also in 2021, we launched our externally facing [Marketplace](https://xsoar.pan.dev/marketplace) to allow people to explore all the offerings outside of the XSOAR platform.

The vision we have for the XSOAR Marketplace is becoming reality. As our community grows, we're beginning to see new packs from professionals in all walks of cybersecurity. From expert companies to individual contributors, we have so many people to thank for the growth over the last year.

## **New Marketplace content packs from July 2021 to December 2021**

We released **116 new content packs** between July and December to provide our customers with the capabilities they need. The XSOAR Marketplace covers a wide range of security automation use cases including authentication, case management, endpoint security, email gateways, threat intel, messaging, network security, SIEM, and more. Check out the content packs we've released over the last 6 months:

**Analytics \& SIEM**

* [Armorblox](https://xsoar.pan.dev/marketplace/details/Armorblox) - Stops targeted email attacks, protects sensitive data, and automates incident response.
* [Altipeak](https://xsoar.pan.dev/marketplace/details/Safewalk)- Integration with Safewalk identity management and report service.
* [Logsign SIEM](https://xsoar.pan.dev/marketplace/details/LogsignSiem) - Collect and store unlimited data, investigate and detect threats, and respond automatically.
* [MicroFocus SMAX](https://xsoar.pan.dev/marketplace/details/MicroFocusSMAX) - Fetch SMAX incidents/requests and automate different sorts of actions.
* [SOCRadar](https://xsoar.pan.dev/marketplace/details/SOCRadar) - Streamline remediation of alerts and incidents.

**Attack Surface Management**

* [ArcusTeam](https://xsoar.pan.dev/marketplace/details/ArcusTeam) - Identify and manage vulnerabilities found on IoT devices.
* [SecurityTrails](https://xsoar.pan.dev/marketplace/details/SecurityTrails) - Integration with SecurityTrails platform.

**Authentication**

* [FireMon Security Manager](https://xsoar.pan.dev/marketplace/details/FireMonSecurityManager) - Create a Policy Planner Ticket and Verify Pre Changes Assessment for Rule Requirement.
* [FortiAuthenticator](https://xsoar.pan.dev/marketplace/details/FortiAuthenticator) - Manage user configuration.
* [SafeNet Trusted Access](https://xsoar.pan.dev/marketplace/details/SafeNet_Trusted_Access) - Access management solution that allows organizations to centrally manage and secure access to business applications.
* [ThycoticDSV](https://xsoar.pan.dev/marketplace/details/ThycoticDSV) - Retrieve the data stored in the Thycotic DevOps Storage Vault and use it in other integrations.

**Case Management**

* [PenfieldAI](https://xsoar.pan.dev/marketplace/details/PenfieldAI) - A human-machine intelligence platform to model Cybersecurity Analysts actions and processes in real-time.

**Data Enrichment \& Threat Intelligence**

* [Abnormal Security](https://xsoar.pan.dev/marketplace/details/AbnormalSecurity) - Detects the whole spectrum of email attacks.
* [ArcannaAI](https://xsoar.pan.dev/marketplace/details/Arcanna) - Provides AI assistance to IT \& Cybersecurity teams.
* [Cybersixgill Actionable Alerts](https://xsoar.pan.dev/marketplace/details/CybersixgillActionableAlerts) - Automatically retrieve Cybersixgill's actionable alerts based on organization assets.
* [Cybersixgill-DVE](https://xsoar.pan.dev/marketplace/details/CybersixgillDVE) - Enables users to track threats from vulnerabilities that others define as irrelevant but could be exploited.
* [FlashPointFeed](https://xsoar.pan.dev/marketplace/details/FlashpointFeed) - Access IOCs and technical data across Flashpoint datasets and those included in Finished Intelligence Reports.
* [HYAS Protect](https://xsoar.pan.dev/marketplace/details/HYASProtect) - Get the verdict information for FQDN, IP Address and NameServer.
* [HYAS Insight](https://xsoar.pan.dev/marketplace/details/HYASInsight) - A threat investigation and attribution solution that uses exclusive data sources and non-traditional mechanisms.
* [KELA RaDark](https://xsoar.pan.dev/marketplace/details/KELARaDark) - Supports full integration with KELA's RaDark platform.
* [IP-API](https://xsoar.pan.dev/marketplace/details/IPAPI) - Enriches IP addresses with data about geolocation and association with mobile devices, hosts, or proxies.
* [MalwareBazaar](https://xsoar.pan.dev/marketplace/details/MalwareBazaar) - Download malware samples, comment malware samples, and obtain intel based on file hash, tag, signature, file type, etc.
* [MISP](https://xsoar.pan.dev/marketplace/details/MISP) - Fetches attributes from MISP and creates indicators from them.
* [NucleonCyber](https://xsoar.pan.dev/marketplace/details/NucleonCyber) - Integrate NucleonCyber indicators, including IP, URL, and files.
* [Qintel](https://xsoar.pan.dev/marketplace/details/Qintel) - Integrate Qintel products, including Patch Management Intelligence (PMI), QSentry, and QWatch.
* [RSS Feed](https://xsoar.pan.dev/marketplace/details/FeedRSS) -Access updates and articles on websites in a standardized, computer-readable format.
* [SOCRadar Threat Feed](https://xsoar.pan.dev/marketplace/details/FeedSOCRadarThreatFeed) - Obtain indicators to gain knowledge about the malicious activities.
* [Unit 42 Intel](https://xsoar.pan.dev/marketplace/details/Unit42Intel) - Fetch a list of threat intel objects provided by Palo Alto Network's Unit 42 threat researchers.

**Endpoint**

* [CrowdStrike OpenAPI](https://xsoar.pan.dev/marketplace/details/CrowdStrikeOpenAPI) - Interact with CrowdStrike APIs that do not have dedicated integrations in Cortex XSOAR.
* [Covalence for Security Providers](https://xsoar.pan.dev/marketplace/details/CovalenceForSecurityProviders)- Triggers by any alert from endpoint, cloud, and network security monitoring, with mitigation steps where applicable.
* [Covalence Managed Security](https://xsoar.pan.dev/marketplace/details/CovalenceManagedSecurity) - Triggers by triaged alerts from endpoint, cloud, and network security monitoring.
* [Trend Micro Deep Security](https://xsoar.pan.dev/marketplace/details/TrendMicroDeepSecurity) - Defend your system against network and application attacks.
* [Unisys Stealth](https://xsoar.pan.dev/marketplace/details/UnisysStealth) - Trigger dynamically isolation of users or endpoints from the rest of the Stealth network.
* [VMWare Workspace One UEM](https://xsoar.pan.dev/marketplace/details/VMwareWorkspaceONEUEM) - Search enrolled corporate or employee-owned devices, providing information like serial number, OS details, and more.
* [Zero Trust Analytics Platform](https://xsoar.pan.dev/marketplace/details/ZeroTrustAnalyticsPlatform) - Integrate the ZTAP system forview of raised alerts.

**Forensics \& Malware Analysis**

* [Windows Forensics](https://xsoar.pan.dev/marketplace/details/WindowsForensics) - Acquires forensic data from Windows hosts.

* [ReversingLabs Titanium Scale](https://xsoar.pan.dev/marketplace/details/ReversingLabs_TitaniumScale) - Automatically unpack and extract all available information from different formats.

* [VMRay Analyzer Enterprise](https://xsoar.pan.dev/marketplace/details/VMRayEnterprise) and [VMRay Analyzer Standard](https://xsoar.pan.dev/marketplace/details/VMRayStandard) - Analyze files and URLs using the VMRay Platform for accurate threat intelligence and high-quality IOCs. Generate up to 1000/300 reports per month.

**Identity \& Access Management**

* [AWS-ILM](https://xsoar.pan.dev/marketplace/details/AWSILM) - Execute CRUD and Group operations for employee lifecycle processes.
* [Clarizen IAM](https://xsoar.pan.dev/marketplace/details/Clarizen) - Perform operations in the employee lifecycle processes.
* [Envoy](https://xsoar.pan.dev/marketplace/details/Envoy) - An enterprise workplace visitor management software platform.
* [Exceed LMS](https://xsoar.pan.dev/marketplace/details/ExceedLMS) - A specialized LMS and Phishing Simulator created to manage security awareness content.
* [OracleIAM](https://xsoar.pan.dev/marketplace/details/Oracle_IAM) - Execute CRUD and Group operations for employee lifecycle processes.
* [PingIdentity](https://xsoar.pan.dev/marketplace/details/PingIdentity) - Utilize PingOne cloud identity and access management services for different triggering events.
* [SalesForce Fusion](https://xsoar.pan.dev/marketplace/details/SalesforceFusion) - Execute CRUD operations for employee lifecycle processes.
* [SAP-IAM](https://xsoar.pan.dev/marketplace/details/SAP_IAM) - Execute CRUD operations for employee lifecycle processes in SAP.

**IOT/OT**

* [UBIRCH](https://xsoar.pan.dev/marketplace/details/UBIRCH) - Verify data authenticity and integrity and correctness of sequence.

**IT Services**

* [Ansible Alibaba Cloud](https://xsoar.pan.dev/marketplace/details/AnsibleAlibabaCloud) - Manage Alibaba Cloud Elastic Compute Service using Ansible modules.
* [Ansible Azure](https://xsoar.pan.dev/marketplace/details/AnsibleAzure) - Manage Azure Services using Ansible modules.
* [Ansible Cisco IOS](https://xsoar.pan.dev/marketplace/details/AnsibleCiscoIOS) - Manage Cisco IOS switches and routers using Ansible modules.
* [Ansible Cisco NXOS](https://xsoar.pan.dev/marketplace/details/AnsibleCiscoNXOS) - Manage Cisco NXOS switches and routers using Ansible modules.
* [Ansible Hetzner Cloud](https://xsoar.pan.dev/marketplace/details/AnsibleHetznerCloud) - Manage Hetzner Cloud Services using Ansible modules.
* [Ansible Kubernetes](https://xsoar.pan.dev/marketplace/details/AnsibleKubernetes) - Manage Kubernetes using Ansible modules.
* [Ansible Linux](https://xsoar.pan.dev/marketplace/details/AnsibleLinux) - Manage Linux hosts using Ansible modules.
* [Ansible Microsoft Windows](https://xsoar.pan.dev/marketplace/details/AnsibleMicrosoftWindows) - Manage Microsoft Windows hosts using Ansible modules.
* [Ansible VMware](https://xsoar.pan.dev/marketplace/details/AnsibleVMware) - Manage VMware vCenter and ESXi using Ansible modules.
* [Azure Active Directory Identity and Access](https://xsoar.pan.dev/marketplace/details/AzureActiveDirectory) - Acquire information and perform operations on risks and risky users.
* [F5 LTM](https://xsoar.pan.dev/marketplace/details/F5LTM) - Track and understand traffic on your network.
* [FileOrbis](https://xsoar.pan.dev/marketplace/details/FileOrbis) - On-prem file management system with secure content collaboration features.
* [GSuiteAuditor](https://xsoar.pan.dev/marketplace/details/GsuiteAuditor) - Receive audit log data from G Suite services.

**Network Security**

* [Cloud-IDS](https://xsoar.pan.dev/marketplace/details/CloudIDS) - Next-generation advanced intrusion detection service.
* [PicusAutomation](https://xsoar.pan.dev/marketplace/details/PicusAutomation) - Run commands on Picus and automate security validation with playbooks.
* [SaaS Security (Prisma)](https://xsoar.pan.dev/marketplace/details/PrismaSaasSecurity) - Provides unparalleled visibility and precise control of SaaS applications using an extensive library of application signatures.
* [Social Engineer Domain Analysis](https://xsoar.pan.dev/marketplace/details/SocialEngineeringDomainAnalysis) - Enrich and compare domains against your organizations registered domain.

**Phishing / Email**

* [Cyren Inbox Security](https://xsoar.pan.dev/marketplace/details/CyrenInboxSecurity) - Protect Office 365 mailboxes from evasive phishing, business email compromise, and fraud.
* [Ironscales](https://xsoar.pan.dev/marketplace/details/Ironscales) - A self-learning email security platform, automatically responding to malicious emails.
* [PhishER](https://xsoar.pan.dev/marketplace/details/knowbe4Phisher) - Automatic prioritization lets teams cut through the inbox noise and respond to the most dangerous threats more quickly.
* [PhishingAlerts](https://xsoar.pan.dev/marketplace/details/PhishingAlerts) - Retrieve, process, and analyze email files to manage phishing alert incidents.

**Utilities**

* [Atlassian Confluence Cloud](https://xsoar.pan.dev/marketplace/details/AtlassianConfluenceCloud) - Interact with Confluence entities and manage space permissions.
* [AppendIfNotEmpty](https://xsoar.pan.dev/marketplace/details/AppendIfNotEmpty) - Append items to the end of a list if they are not empty.
* [CircleCI](https://xsoar.pan.dev/marketplace/details/CircleCI) - A modern continuous integration and continuous delivery (CI/CD) platform that automates building, testing, and deploying software.
* [CiscoWSA](https://xsoar.pan.dev/marketplace/details/CiscoWSA) - To retrieve and modify Cisco Web Security Gateway features.
* [Cofense Intelligence v2](https://xsoar.pan.dev/marketplace/details/CofenseIntelligenceV2) - Human-verified phishing intelligence for actionable defense and strategic planning.
* [Content Installation](https://xsoar.pan.dev/marketplace/details/ContentInstallation) - Enables easy installation of content packs.
* Content Management - Orchestrate your XSOAR system configuration.
* [ConvertTimezoneFromUTC](https://xsoar.pan.dev/marketplace/details/ConvertTimezoneFromUTC) - Utilities: Transformer (Date) to Convert UTC to another Timezone.
* [CreateHash](https://xsoar.pan.dev/marketplace/details/CreateHash) - Convert a text input into a hash from the Python library.
* [CreatePlbkDoc](https://xsoar.pan.dev/marketplace/details/CreatePlbkDoc) - Produce docx file detailing the tasks in the given playbook.
* [CyberChef](https://xsoar.pan.dev/marketplace/details/CyberChef) - Integrate with your CyberChef server.
* [DeduplicateValuesbyKey](https://xsoar.pan.dev/marketplace/details/DeduplicateValuesbyKey) - Give a list of objects and a key and receive a list of unique values.
* [Dig](https://xsoar.pan.dev/marketplace/details/Dig) - Run Dig automation to get 'A' and 'PTR' records.
* [DNSOverHttps](https://xsoar.pan.dev/marketplace/details/DNSOverHttps) - Make DNS queries over HTTPS to Cloudflare or Google DoH service.
* [Dynamic Sections Report](https://xsoar.pan.dev/marketplace/details/DynamicSectionReports) - Display indicator and incident information easily on custom layouts.
* [Forward XSOAR Audit Logs to Splunk HEC](https://xsoar.pan.dev/marketplace/details/ForwardXSOARAuditLogsToSplunkHEC) - Use the XSOAR API to get the audit logs and push them to Splunk HEC.
* [Google Maps](https://xsoar.pan.dev/marketplace/details/GoogleMaps) - Use the geocoding API to return the coordinates of a given address.
* [Hey](https://xsoar.pan.dev/marketplace/details/Hey) - Utilities: Use rakyll/hey to test a web application with a load of requests.
* [InvertEveryTwoItems](https://xsoar.pan.dev/marketplace/details/InvertEveryTwoItems) - This transformer will invert every two items in an array.
* [IsArrayItemInList](https://xsoar.pan.dev/marketplace/details/IsArrayItemInList) - Comparing array(list) data of context to existing lists.
* [JsonUnescape](https://xsoar.pan.dev/marketplace/details/JsonUnescape) - Recursively un-escapes JSON strings found in a JSON object.
* [LINENotify](https://xsoar.pan.dev/marketplace/details/LINENotify) - Utilities: Sends messages to LINE Group.
* [MergeDictArray](https://xsoar.pan.dev/marketplace/details/MergeDictArray) - Each entry in an array is merged into the existing array if the keyed-value matches.
* [MS-ISAC](https://xsoar.pan.dev/marketplace/details/MSISAC) - Fetch MS-ISAC events and alert details.
* [Network Calculator](https://xsoar.pan.dev/marketplace/details/NetCalc) - Automate network data calculations.
* [Nexthink](https://xsoar.pan.dev/marketplace/details/Nexthink) - Helps IT teams deliver on the promise of the modern digital workplace.
* [ParseHTMLTables](https://xsoar.pan.dev/marketplace/details/ParseHTMLTables) - Find tables inside HTML and extract the contents into objects.
* [Powershell Remoting](https://xsoar.pan.dev/marketplace/details/PowershellRemoting) - Remotely connect to Windows hosts to execute Powershell commands.
* [Publish List](https://xsoar.pan.dev/marketplace/details/PublishList) - Publish XSOAR lists for external consumption.
* [Redact/Defang Indicators](https://xsoar.pan.dev/marketplace/details/Redact_DefangIndicators_URLs_IPs_Email) - Redact, defang, or obfuscate indicators before sharing.
* [RemoveEmpty](https://xsoar.pan.dev/marketplace/details/RemoveEmpty) - Remove empty items from the array.
* [Schedule Task and Poll](https://xsoar.pan.dev/marketplace/details/ScheduleTaskAndPoll) - Schedule a specified command and monitor for completion by looking for output in context.
* [SplunkCIMFields](https://xsoar.pan.dev/marketplace/details/SplunkCIMFields) - Convert Splunk CIM Dynamic Fields into their values.
* [Strip Accent Marks from String](https://xsoar.pan.dev/marketplace/details/StripAccentMarksFromString) - Strip accent marks (diacritics) from a given string.
* [System Diagnostics and Health Check](https://xsoar.pan.dev/marketplace/details/HealthCheck) - Automatically review the current server and content for issues and best practices.
* [Twitter](https://xsoar.pan.dev/marketplace/details/Twitter) - Perform searches on twitter for tweets, users, and user information.
* [Team Management](https://xsoar.pan.dev/marketplace/details/TeamManagement) - Playbooks and automation scripts to help with the management of team members within an incident.
* [Web Scraper](https://xsoar.pan.dev/marketplace/details/WebScraper) - An automation script to web scrape a URL or HTML page.
* [XSOAR Content Update Notifications](https://xsoar.pan.dev/marketplace/details/XSOARContentUpdateNotifications) - Shows all installed content packs and whether or not they have an update.

**Vulnerability Management**

* [Cohesity Helios](https://xsoar.pan.dev/marketplace/details/CohesityHelios) - Performs actions based on alerts raised in Cohesity Helios
* [CVE-2021-44228 - Log4j RCE](https://xsoar.pan.dev/marketplace/details/CVE_2021_44228) - Patches a critical 0-day exploit in the Java library log4j.
* [CVE-2021-40444 - MSHTML RCE](https://xsoar.pan.dev/marketplace/details/CVE_2021_40444) - Addresses vulnerabilities in the MSHTML engine.
* [Edgescan](https://xsoar.pan.dev/marketplace/details/Edgescan)- Cloud-based continuous vulnerability management and penetration testing solution.
* [HackerOne](https://xsoar.pan.dev/marketplace/details/HackerOne) - A vulnerability coordination and bug bounty platform.
* [PingCastle](https://xsoar.pan.dev/marketplace/details/PingCastle)- Audit the risk level of your AD infrastructure and check for vulnerable practices.
* [SecurityScorecard](https://xsoar.pan.dev/marketplace/details/SecurityScorecard) - Provides security scorecards and alerts for domains.
* [ShiftLeft CORE](https://xsoar.pan.dev/marketplace/details/ShiftLeft) - See high risk vulnerabilities in your application before they go into production.

**View the full release notes for the featured packs listed above:**

[21.7.0](https://xsoar.pan.dev/docs/reference/releases/21.7.0), [21.7.1](https://xsoar.pan.dev/docs/reference/releases/21.7.1), [21.8.0](https://xsoar.pan.dev/docs/reference/releases/21.8.0), [21.8.1](https://xsoar.pan.dev/docs/reference/releases/21.8.1), [21.8.2](https://xsoar.pan.dev/docs/reference/releases/21.8.2), [21.9.0](https://xsoar.pan.dev/docs/reference/releases/21.9.0), [21.9.1](https://xsoar.pan.dev/docs/reference/releases/21.9.1), [21.10.0](https://xsoar.pan.dev/docs/reference/releases/21.10.0), [21.10.1](https://xsoar.pan.dev/docs/reference/releases/21.10.1/), [21.1.0](https://xsoar.pan.dev/docs/reference/releases/21.11.0), [21.11.1](https://xsoar.pan.dev/docs/reference/releases/21.11.1), [21.12.0](https://xsoar.pan.dev/docs/reference/releases/21.12.0), [21.12.1](https://xsoar.pan.dev/docs/reference/releases/21.12.1)

Visit the[XSOAR Marketplace](https://xsoar.pan.dev/marketplace) to browse the available content packs and integrations.

New to Cortex XSOAR? Download the [Community Edition](https://start.paloaltonetworks.com/sign-up-for-community-edition.html) to try the out of the box capabilities today or sign up for the next guided [Hands on Workshop.](https://register.paloaltonetworks.com/menucortexxsoarhandsonworkshop)

## **Join us for 2022**

Cortex XSOAR remains dedicated to our customers by releasing capabilities and content packs to cover the gaps in your security. We have some exciting enhancements coming to the Marketplace in the very near future, so be sure to keep an eye out! On behalf of the XSOAR team, I'd like to thank all of the customers and partners that made 2021 so great.

*** ** * ** ***

## Related Blogs

### [Partner Integrations](https://www.paloaltonetworks.com/blog/security-operations/category/partner-integrations/?ts=markdown), [Partners](https://www.paloaltonetworks.com/blog/category/partners/?ts=markdown)

[#### Automate Email Incident Response with Armorblox in Cortex XSOAR](https://origin-researchcenter.paloaltonetworks.com/blog/security-operations/automate-email-incident-response-with-armorblox-in-cortex-xsoar/)

### [Partner Integrations](https://www.paloaltonetworks.com/blog/security-operations/category/partner-integrations/?ts=markdown), [Partners](https://www.paloaltonetworks.com/blog/category/partners/?ts=markdown)

[#### Build a Champion SOC with Best in Class Threat Intelligence from VirusTotal and Cortex XSOAR](https://origin-researchcenter.paloaltonetworks.com/blog/security-operations/virustotal-welcome-xsoar-marketplace/)

### [Partner Integrations](https://www.paloaltonetworks.com/blog/security-operations/category/partner-integrations/?ts=markdown), [Partners](https://www.paloaltonetworks.com/blog/category/partners/?ts=markdown)

[#### Accelerate Ransomware Recovery with Druva Cloud and Cortex XSOAR](https://origin-researchcenter.paloaltonetworks.com/blog/security-operations/druva-cloud-xsoar-marketplace/)

### [Partner Integrations](https://www.paloaltonetworks.com/blog/security-operations/category/partner-integrations/?ts=markdown)

[#### Automate Email IR with IRONSCALES Self Learning Threat Intel and Cortex XSOAR](https://origin-researchcenter.paloaltonetworks.com/blog/security-operations/ironscales-xsoar-marketplace/)

### [Must-Read Articles](https://www.paloaltonetworks.com/blog/security-operations/category/must-read-articles/?ts=markdown), [Partner Integrations](https://www.paloaltonetworks.com/blog/security-operations/category/partner-integrations/?ts=markdown), [Use-Cases](https://www.paloaltonetworks.com/blog/security-operations/category/use-cases/?ts=markdown)

[#### Auto-Quarantine Phishing Threats with Cortex XSOAR and Cofense Vision](https://origin-researchcenter.paloaltonetworks.com/blog/security-operations/auto-quarantine-phishing-threats-with-cortex-xsoar-and-cofense-vision/)

### [Must-Read Articles](https://www.paloaltonetworks.com/blog/security-operations/category/must-read-articles/?ts=markdown), [News and Events](https://www.paloaltonetworks.com/blog/security-operations/category/news-and-events/?ts=markdown), [Partner Integrations](https://www.paloaltonetworks.com/blog/security-operations/category/partner-integrations/?ts=markdown), [Use-Cases](https://www.paloaltonetworks.com/blog/security-operations/category/use-cases/?ts=markdown)

[#### Use VMRay Analyzer's Contextual Threat Intelligence for Automated Threat Hunting in Cortex XSOAR](https://origin-researchcenter.paloaltonetworks.com/blog/security-operations/use-vmray-analyzers-contextual-threat-intelligence-for-automated-threat-hunting-in-cortex-xsoar/)

### Subscribe to Security Operations Blogs!

Sign up to receive must-read articles, Playbooks of the Week, new feature announcements, and more.
![spinner](https://origin-researchcenter.paloaltonetworks.com/blog/wp-content/themes/panwblog2023/dist/images/ajax-loader.gif) Sign up  
Please enter a valid email.  
By submitting this form, you agree to our [Terms of Use](https://www.paloaltonetworks.com/legal-notices/terms-of-use?ts=markdown) and acknowledge our [Privacy Statement](https://www.paloaltonetworks.com/legal-notices/privacy?ts=markdown). Please look for a confirmation email from us. If you don't receive it in the next 10 minutes, please check your spam folder.  
This site is protected by reCAPTCHA and the Google [Privacy Policy](https://policies.google.com/privacy) and [Terms of Service](https://policies.google.com/terms) apply.  
{#footer} {#footer}

## Products and Services

* [AI-Powered Network Security Platform](https://www.paloaltonetworks.com/network-security?ts=markdown)

* [Secure AI by Design](https://www.paloaltonetworks.com/precision-ai-security/secure-ai-by-design?ts=markdown)

* [Prisma AIRS](https://www.paloaltonetworks.com/prisma/prisma-ai-runtime-security?ts=markdown)

* [AI Access Security](https://www.paloaltonetworks.com/sase/ai-access-security?ts=markdown)

* [Cloud Delivered Security Services](https://www.paloaltonetworks.com/network-security/security-subscriptions?ts=markdown)

* [Advanced Threat Prevention](https://www.paloaltonetworks.com/network-security/advanced-threat-prevention?ts=markdown)

* [Advanced URL Filtering](https://www.paloaltonetworks.com/network-security/advanced-url-filtering?ts=markdown)

* [Advanced WildFire](https://www.paloaltonetworks.com/network-security/advanced-wildfire?ts=markdown)

* [Advanced DNS Security](https://www.paloaltonetworks.com/network-security/advanced-dns-security?ts=markdown)

* [Enterprise Data Loss Prevention](https://www.paloaltonetworks.com/sase/enterprise-data-loss-prevention?ts=markdown)

* [Enterprise IoT Security](https://www.paloaltonetworks.com/network-security/enterprise-device-security?ts=markdown)

* [Medical IoT Security](https://www.paloaltonetworks.com/network-security/medical-device-security?ts=markdown)

* [Industrial OT Security](https://www.paloaltonetworks.com/network-security/medical-device-security?ts=markdown)

* [SaaS Security](https://www.paloaltonetworks.com/sase/saas-security?ts=markdown)

* [Next-Generation Firewalls](https://www.paloaltonetworks.com/network-security/next-generation-firewall?ts=markdown)

* [Hardware Firewalls](https://www.paloaltonetworks.com/network-security/hardware-firewall-innovations?ts=markdown)

* [Software Firewalls](https://www.paloaltonetworks.com/network-security/software-firewalls?ts=markdown)

* [Strata Cloud Manager](https://www.paloaltonetworks.com/network-security/strata-cloud-manager?ts=markdown)

* [SD-WAN for NGFW](https://www.paloaltonetworks.com/network-security/sd-wan-subscription?ts=markdown)

* [PAN-OS](https://www.paloaltonetworks.com/network-security/pan-os?ts=markdown)

* [Panorama](https://www.paloaltonetworks.com/network-security/panorama?ts=markdown)

* [Secure Access Service Edge](https://www.paloaltonetworks.com/sase?ts=markdown)

* [Prisma SASE](https://www.paloaltonetworks.com/sase?ts=markdown)

* [Application Acceleration](https://www.paloaltonetworks.com/sase/app-acceleration?ts=markdown)

* [Autonomous Digital Experience Management](https://www.paloaltonetworks.com/sase/adem?ts=markdown)

* [Enterprise DLP](https://www.paloaltonetworks.com/sase/enterprise-data-loss-prevention?ts=markdown)

* [Prisma Access](https://www.paloaltonetworks.com/sase/access?ts=markdown)

* [Prisma Browser](https://www.paloaltonetworks.com/sase/prisma-browser?ts=markdown)

* [Prisma SD-WAN](https://www.paloaltonetworks.com/sase/sd-wan?ts=markdown)

* [Remote Browser Isolation](https://www.paloaltonetworks.com/sase/remote-browser-isolation?ts=markdown)

* [SaaS Security](https://www.paloaltonetworks.com/sase/saas-security?ts=markdown)

* [AI-Driven Security Operations Platform](https://www.paloaltonetworks.com/cortex?ts=markdown)

* [Cloud Security](https://www.paloaltonetworks.com/cortex/cloud?ts=markdown)

* [Cortex Cloud](https://www.paloaltonetworks.com/cortex/cloud?ts=markdown)

* [Application Security](https://www.paloaltonetworks.com/cortex/cloud/application-security?ts=markdown)

* [Cloud Posture Security](https://www.paloaltonetworks.com/cortex/cloud/cloud-posture-security?ts=markdown)

* [Cloud Runtime Security](https://www.paloaltonetworks.com/cortex/cloud/runtime-security?ts=markdown)

* [Prisma Cloud](https://www.paloaltonetworks.com/prisma/cloud?ts=markdown)

* [AI-Driven SOC](https://www.paloaltonetworks.com/cortex?ts=markdown)

* [Cortex XSIAM](https://www.paloaltonetworks.com/cortex/cortex-xsiam?ts=markdown)

* [Cortex XDR](https://www.paloaltonetworks.com/cortex/cortex-xdr?ts=markdown)

* [Cortex XSOAR](https://www.paloaltonetworks.com/cortex/cortex-xsoar?ts=markdown)

* [Cortex Xpanse](https://www.paloaltonetworks.com/cortex/cortex-xpanse?ts=markdown)

* [Unit 42 Managed Detection \& Response](https://www.paloaltonetworks.com/cortex/managed-detection-and-response?ts=markdown)

* [Managed XSIAM](https://www.paloaltonetworks.com/cortex/managed-xsiam?ts=markdown)

* [Threat Intel and Incident Response Services](https://www.paloaltonetworks.com/unit42?ts=markdown)

* [Proactive Assessments](https://www.paloaltonetworks.com/unit42/assess?ts=markdown)

* [Incident Response](https://www.paloaltonetworks.com/unit42/respond?ts=markdown)

* [Transform Your Security Strategy](https://www.paloaltonetworks.com/unit42/transform?ts=markdown)

* [Discover Threat Intelligence](https://www.paloaltonetworks.com/unit42/threat-intelligence-partners?ts=markdown)

## Company

* [About Us](https://www.paloaltonetworks.com/about-us?ts=markdown)
* [Careers](https://jobs.paloaltonetworks.com/en/)
* [Contact Us](https://www.paloaltonetworks.com/company/contact-sales?ts=markdown)
* [Corporate Responsibility](https://www.paloaltonetworks.com/about-us/corporate-responsibility?ts=markdown)
* [Customers](https://www.paloaltonetworks.com/customers?ts=markdown)
* [Investor Relations](https://investors.paloaltonetworks.com/)
* [Location](https://www.paloaltonetworks.com/about-us/locations?ts=markdown)
* [Newsroom](https://www.paloaltonetworks.com/company/newsroom?ts=markdown)

## Popular Links

* [Blog](https://www.paloaltonetworks.com/blog/?ts=markdown)
* [Communities](https://www.paloaltonetworks.com/communities?ts=markdown)
* [Content Library](https://www.paloaltonetworks.com/resources?ts=markdown)
* [Cyberpedia](https://www.paloaltonetworks.com/cyberpedia?ts=markdown)
* [Event Center](https://events.paloaltonetworks.com/)
* [Manage Email Preferences](https://start.paloaltonetworks.com/preference-center)
* [Products A-Z](https://www.paloaltonetworks.com/products/products-a-z?ts=markdown)
* [Product Certifications](https://www.paloaltonetworks.com/legal-notices/trust-center/compliance?ts=markdown)
* [Report a Vulnerability](https://www.paloaltonetworks.com/security-disclosure?ts=markdown)
* [Sitemap](https://www.paloaltonetworks.com/sitemap?ts=markdown)
* [Tech Docs](https://docs.paloaltonetworks.com/)
* [Unit 42](https://unit42.paloaltonetworks.com/)
* [Do Not Sell or Share My Personal Information](https://panwedd.exterro.net/portal/dsar.htm?target=panwedd)
  ![PAN logo](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/pan-logo-dark.svg)
* [Privacy](https://www.paloaltonetworks.com/legal-notices/privacy?ts=markdown)
* [Trust Center](https://www.paloaltonetworks.com/legal-notices/trust-center?ts=markdown)
* [Terms of Use](https://www.paloaltonetworks.com/legal-notices/terms-of-use?ts=markdown)
* [Documents](https://www.paloaltonetworks.com/legal?ts=markdown)

Copyright © 2026 Palo Alto Networks. All Rights Reserved

* [![Youtube](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/youtube-black.svg)](https://www.youtube.com/user/paloaltonetworks)
* [![Podcast](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/icons/podcast.svg)](https://www.paloaltonetworks.com/podcasts/threat-vector?ts=markdown)
* [![Facebook](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/facebook-black.svg)](https://www.facebook.com/PaloAltoNetworks/)
* [![LinkedIn](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/linkedin-black.svg)](https://www.linkedin.com/company/palo-alto-networks)
* [![Twitter](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/twitter-x-black.svg)](https://twitter.com/PaloAltoNtwks)
* EN  
  Select your language