* [Blog](https://origin-researchcenter.paloaltonetworks.com/blog) * [Security Operations](https://origin-researchcenter.paloaltonetworks.com/blog/security-operations/) * [Must-Read Articles](https://origin-researchcenter.paloaltonetworks.com/blog/security-operations/category/must-read-articles/) * What's Next in Cortex: Ne... # What's Next in Cortex: New Innovations for Security Operations [](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Forigin-researchcenter.paloaltonetworks.com%2Fblog%2Fsecurity-operations%2Fwhats-next-in-cortex-new-innovations-for-security-operations%2F) [](https://twitter.com/share?text=What%E2%80%99s+Next+in+Cortex%3A+New+Innovations+for+Security+Operations&url=https%3A%2F%2Forigin-researchcenter.paloaltonetworks.com%2Fblog%2Fsecurity-operations%2Fwhats-next-in-cortex-new-innovations-for-security-operations%2F) [](https://www.linkedin.com/shareArticle?mini=true&url=https%3A%2F%2Forigin-researchcenter.paloaltonetworks.com%2Fblog%2Fsecurity-operations%2Fwhats-next-in-cortex-new-innovations-for-security-operations%2F&title=What%E2%80%99s+Next+in+Cortex%3A+New+Innovations+for+Security+Operations&summary=&source=) [](https://www.paloaltonetworks.com//www.reddit.com/submit?url=https://origin-researchcenter.paloaltonetworks.com/blog/security-operations/whats-next-in-cortex-new-innovations-for-security-operations/&ts=markdown) \[\](mailto:?subject=What’s Next in Cortex: New Innovations for Security Operations) Link copied By [Scott Simkin](https://www.paloaltonetworks.com/blog/author/scott-simkin/?ts=markdown "Posts by Scott Simkin") Sep 23, 2024 8 minutes [Must-Read Articles](https://www.paloaltonetworks.com/blog/security-operations/category/must-read-articles/?ts=markdown) [News and Events](https://www.paloaltonetworks.com/blog/security-operations/category/news-and-events/?ts=markdown) [Product Features](https://www.paloaltonetworks.com/blog/security-operations/category/product-features/?ts=markdown) [ASM](https://www.paloaltonetworks.com/blog/tag/asm/?ts=markdown) [Attack Surface Management](https://www.paloaltonetworks.com/blog/tag/attack-surface-management/?ts=markdown) [Automation](https://www.paloaltonetworks.com/blog/tag/automation/?ts=markdown) [CDR](https://www.paloaltonetworks.com/blog/tag/cdr/?ts=markdown) [Cloud detection and response](https://www.paloaltonetworks.com/blog/tag/cloud-detection-and-response/?ts=markdown) [Cloud Security](https://www.paloaltonetworks.com/blog/tag/cloud-security/?ts=markdown) [Cortex](https://www.paloaltonetworks.com/blog/tag/cortex/?ts=markdown) [cybersecurity](https://www.paloaltonetworks.com/blog/tag/cybersecurity/?ts=markdown) [EDR](https://www.paloaltonetworks.com/blog/tag/edr/?ts=markdown) [endpoint protection](https://www.paloaltonetworks.com/blog/tag/endpoint-protection/?ts=markdown) [MDR](https://www.paloaltonetworks.com/blog/tag/mdr/?ts=markdown) [Remediation](https://www.paloaltonetworks.com/blog/tag/remediation/?ts=markdown) [SecOps](https://www.paloaltonetworks.com/blog/tag/secops/?ts=markdown) [security operations](https://www.paloaltonetworks.com/blog/tag/security-operations/?ts=markdown) [Security Operations Center](https://www.paloaltonetworks.com/blog/tag/security-operations-center/?ts=markdown) [SIEM](https://www.paloaltonetworks.com/blog/tag/siem/?ts=markdown) [SOAR](https://www.paloaltonetworks.com/blog/tag/soar-2/?ts=markdown) [SOC](https://www.paloaltonetworks.com/blog/tag/soc/?ts=markdown) [XDR](https://www.paloaltonetworks.com/blog/tag/xdr/?ts=markdown) [Xpanse](https://www.paloaltonetworks.com/blog/tag/xpanse/?ts=markdown) [XSIAM](https://www.paloaltonetworks.com/blog/tag/xsiam/?ts=markdown) [XSIAM Command Center](https://www.paloaltonetworks.com/blog/tag/xsiam-command-center/?ts=markdown) [XSOAR](https://www.paloaltonetworks.com/blog/tag/xsoar/?ts=markdown) Staying ahead of today's threats requires SOC transformation fueled by AI and automation. The latest innovations for the AI-driven Cortex platform continue to deliver better, faster, and more efficient security operations designed to help analysts stop cyberattacks in real-time. Here's what's new: * **XSIAM 2.4** : General availability of support for third-party EDRs to bring the power of XSIAM to traditional endpoint security tools, as well as more robust data access controls and support for MSSPs. * **XDR 3.12** : Improved deployment efficiency, threat prevention, and endpoint hardening. * **Xpanse 2.7** : New automations and active response enhancements. * **XSOAR 8.8** : Simplified automation in security operations. ## **XSIAM 2.4: GA of Support for Third-Party EDR Tools to Modernize Traditional Endpoint Security** XSIAM 2.4 continues to push the envelope, offering new capabilities that deliver unrivaled flexibility and control for security operations. Key highlights include: **Third-Party EDR Support** Customers can transform their SOC with the platform's advanced investigation and detection capabilities with their existing EDR tools, by ingesting raw event data from CrowdStrike, SentinelOne, and Microsoft Defender. Additionally, customers can adopt XSIAM without deploying Cortex XDR agents, easing the transition from costly, complex, and outdated SIEM and EDR tools as their legacy contracts expire. **Enhanced NGFW Integration** Teams can get full visibility across their entire infrastructure with an **enhanced NGFW integration process** for comprehensive analysis of network data. Now, customers can add Palo Alto Networks NGFWs from multiple Customer Support Portal (CSP) accounts as data sources to Cortex XSIAM. Customers with multiple CSP accounts can connect all of their accounts into a single Cortex tenant ensuring the completeness of their data and also leverage the capabilities we offer through our native connector. *This feature is also available in XDR 3.12* **Role-Based Access Dataset Views** This new **role-based access dataset view** allows granular access control for data, ensuring least privileged access, even within a dataset. Using this new capability, administrators can now configure a dataset view to limit user access to a subset of a dataset, and grant access only to specific pre-applied filters. The same view then can be leveraged across the product -- in dashboards, correlations and more. ![New dataset views in XSIAM 2.4](https://www.paloaltonetworks.com/blog/wp-content/uploads/2024/09/word-image-328186-1-1.png) New dataset views in XSIAM 2.4 **Flexible Licensing Model for Multi-Tenant Enterprises and MSSPs** The new licensing model simplifies the on-boarding process for managed security service providers (MSSPs) and multi-tenant enterprises. Organizations can now purchase a pool of licenses and allocate them to child tenants on demand directly from the Cortex Gateway. This feature is designed to accelerate onboarding and streamline license management without needing to engage Palo Alto Networks. *This feature is also available in XDR 3.12* ## **XDR 3.12: Improved Deployment Efficiency, Threat Prevention, and Endpoint Hardening** Cortex XDR, a Leader in the [2023 Gartner Magic Quadrant for Endpoint Protection Platforms (EPP)](https://start.paloaltonetworks.com/gartner-epp-mq-2023.html) revolutionized endpoint security by pioneering the Extended Detection and Response (XDR) category, with Cortex XDR the only offering to achieve 100% prevention and detection with NO configuration changes in the [2023 MITRE ATT\&CK Evaluations](https://start.paloaltonetworks.com/essential-guide-MITRE-R5). Our latest [Cortex XDR 3.12](https://docs-cortex.paloaltonetworks.com/r/On~O8Z8e3DHdqVb~tN2lSQ/root) and [Cortex XDR Agent 8.6](https://docs-cortex.paloaltonetworks.com/r/uvaICc3iX2hkpzhqH4H6ow/root) continue to revolutionize the endpoint protection market with new advanced security capabilities, including improved deployment efficiency, threat prevention, and endpoint hardening. *These new features are also available in XSIAM 2.4.* * **Streamlined Linux Operation Mode:** XDR 3.12 makes deploying on Linux systems smoother than ever. A new automated fallback to userspace mode ensures that XDR continues to operate even when kernel mode is unavailable, maintaining protection without disruptions. * **AI-powered PowerShell Examination:** XDRallows security analysts to block, quarantine, or report on malicious PowerShell scripts using AI-based analysis. * **Bluetooth Device Control:** XDR now offers granular control over Bluetooth devices, including both Bluetooth Classic and Bluetooth Low Energy. This new feature helps prevent unauthorized data transfer over Bluetooth channels, blocking potential attack vectors and limiting connections to only authorized devices. ![New Bluetooth device control in XDR 3.12](https://www.paloaltonetworks.com/blog/wp-content/uploads/2024/09/word-image-328186-2-1.png) New Bluetooth device control in XDR 3.12 ## **Xpanse 2.7: New Automations and Active Response Enhancements** Cortex Xpanse, the leading Attack Surface Management (ASM) platform, takes visibility and control of your external attack surface to the next level with the [Expander 2.7](https://docs-cortex.paloaltonetworks.com/r/oEM4wgoMTN2QcbCnQzSVNw/root) release: **Scanning** **Enhancement** **s** Traditional ASM tools often focus on a limited range of ports, missing potential exposures.. Cortex Xpanse now scans all 65,000 ports, as well as 50+ additional protocols for the entire global IPv4 address space. Once a service is found, Xpanse continues periodic scanning until it becomes inactive, ensuring ongoing visibility into your attack surface. This expanded scanning improves detection of insecure services running on non-standard ports, such as SSH, and helps uncover hidden risks running on unusual ports. **New Usability and Feature Improvements** In addition to the new scanning enhancements, Xpanse 2.7 will provide security teams with rich data and intuitive tools to prioritize and address risks effectively, such as: * **Expanded Protocol Detection:** In addition to scanning all 65,000 ports, Xpanse is also adding support for 50+ new protocols. These include torrenting, IoT and OT protocols, cryptocurrency, and many vendor-proprietary protocols. * **Enhanced Services XQL Dataset** : Leveraging Cortex's powerful XQL query language, Xpanse and XSIAM customers are now able to access detailed CVE information, expanded geolocation data, and additional service classification details, providing unparalleled context for informed decision-making. * **Intuitive Alert Management** : New widgets in the Alerts Overview Dashboard allow customers to track trends, filter alerts, and gain valuable insights with just a few clicks, streamlining workflows and facilitating rapid response to critical threats. You can also access up to a year of alert data for comprehensive historical analysis. * **Remediation Reporting** : Stay informed with the latest threats automatically pulled from the Threat Response Center into the Remediation Report. This feature enables seamless sharing of new threat summaries with stakeholders, ensuring organization-wide alignment and collaboration in the fight against cyberthreats. * **New attack surface rules and tests:** With over 860 attack surface rules, 220 attack surface tests, and ongoing enhancements to integrations and cloud support, Xpanse remains at the forefront of ASM technology, providing organizations with the tools and insights they need to secure their ever-changing attack surface. ![New Remediation Report in Xpanse 2.7](https://www.paloaltonetworks.com/blog/wp-content/uploads/2024/09/word-image-328186-3-1.png) New Remediation Report in Xpanse 2.7 ## **XSOAR 8.8: Simplified Automation in Security Operations** Our latest release [Cortex XSOAR 8.8](https://docs-cortex.paloaltonetworks.com/r/Beta/Cortex-XSOAR/8/Cortex-XSOAR-Release-Notes/Cortex-XSOAR-Release-Information) focuses on providing new features and automation to enhance your experience and simplify your journey toward automating security operations. **New Multilayer Indicator/Incident Relationship Canvas** The new visual tool provides SOCs with visibility and collaboration capabilities during incident investigations and threat hunting, eliminating the need for external tools. SOC analysts and threat intel analysts can now create and share dynamic attack diagrams, visualize key security incidents, link indicators of compromise, and maintain static snapshots to streamline and centralize threat intelligence and incident investigation. ![New Multilayer Indicator/Incident Relationship Canvas in XSOAR 8.8](https://www.paloaltonetworks.com/blog/wp-content/uploads/2024/09/word-image-328186-4-1.png) New Multilayer Indicator/Incident Relationship Canvas in XSOAR 8.8 **Excluding Enrichment of Indicators** New indicator enrichment controls enable analysts to gain better control over IOCs and optimize system performance. Analysts can choose to enable or disable enrichment calls, allowing you to conserve system resources when dealing with known indicators. **New Guard Rails Page** The new Guard Rails page lists performance-related errors and warnings during incident ingestion, investigation, and response, helping analysts ensure a stable environment by detecting and preventing actions that can cause major performance degradation or instability. The Guard Pails page indicates when an incident or indicator size exceeds predefined service limits and may affect performance. **Cortex XSOAR Content Packs and Integrations** * **CrowdStrike Falcon**: The CrowdStrike Falcon integration now supports the CrowdStrike Raptor release. * **Prisma Cloud v2:** The Prisma Cloud v2 now enables automated IAM key management via a new set of commands. Administrators can programmatically create, list, and delete access keys directly from XSOAR. * **Atlassian Jira Service Management**: The new Atlassian Jira Service Management integration leverages the Jira Assets plugin to directly automate asset and inventory management through XSOAR. * **Check Point Harmony Endpoint**: The new Check Point Harmony Endpoint integration introduces extensive command support for the platform's endpoint detection and response capabilities. Administrators can now automate key tasks like retrieving IOCs, managing rules and remediation jobs, initiating scans and responses, collecting forensic data, and more directly from XSOAR. * **Thales CipherTrust Manager**: The new Thales CipherTrust Manager integration allows automating key management and certificate tasks directly from the CipherTrust Data Security Platform. Users can now programmatically add users to key user groups, create and manage encryption keys and certificates, and integrate these operations into existing security workflows and responses. * **Sigma Indicator Type**: Added a new indicator type, which is part of the Sigma content pack. * **Unit 42 Threat Brief -- Fighting Ursa** : This playbook handles Unit42 Threat Brief - Fighting Ursa. The playbook will: * Collect, extract, and enrich indicators * Perform indicator-based threat hunting * Suggest relevant migration ### The enhanced features and capabilities included in our September release are just the tip of the iceberg for XSIAM, XDR, Xpanse and XSOAR. To learn more about these and other innovations from Cortex, visit [https://www.paloaltonetworks.com/cortex/](https://www.paloaltonetworks.com/cortex/). *** ** * ** *** ## Related Blogs ### [Announcement](https://www.paloaltonetworks.com/blog/category/announcement/?ts=markdown), [Must-Read Articles](https://www.paloaltonetworks.com/blog/security-operations/category/must-read-articles/?ts=markdown), [News and Events](https://www.paloaltonetworks.com/blog/security-operations/category/news-and-events/?ts=markdown) [#### What's New in Cortex: The Latest Innovations for the World's #1 SecOps Platform (Feb '25 Release)](https://origin-researchcenter.paloaltonetworks.com/blog/security-operations/whats-new-in-cortex-the-latest-innovations-for-the-worlds-1-secops-platform-feb-25-release/) ### [Must-Read Articles](https://www.paloaltonetworks.com/blog/security-operations/category/must-read-articles/?ts=markdown), [News and Events](https://www.paloaltonetworks.com/blog/security-operations/category/news-and-events/?ts=markdown), [Playbook of the Week](https://www.paloaltonetworks.com/blog/security-operations/category/playbook-of-the-week/?ts=markdown) [#### What's New for Cortex and Cortex Cloud (Apr '25)](https://origin-researchcenter.paloaltonetworks.com/blog/security-operations/whats-new-for-cortex-and-cortex-cloud-apr-25/) ### [Must-Read Articles](https://www.paloaltonetworks.com/blog/security-operations/category/must-read-articles/?ts=markdown), [Product Features](https://www.paloaltonetworks.com/blog/security-operations/category/product-features/?ts=markdown) [#### What's New in Cortex](https://origin-researchcenter.paloaltonetworks.com/blog/security-operations/whats-new-in-cortex/) ### [Must-Read Articles](https://www.paloaltonetworks.com/blog/security-operations/category/must-read-articles/?ts=markdown), [Product Features](https://www.paloaltonetworks.com/blog/security-operations/category/product-features/?ts=markdown) [#### How Cortex Defends Against Microsoft SharePoint "ToolShell" Exploits](https://origin-researchcenter.paloaltonetworks.com/blog/security-operations/how-cortex-defends-against-microsoft-sharepoint-toolshell-exploits/) ### [Must-Read Articles](https://www.paloaltonetworks.com/blog/security-operations/category/must-read-articles/?ts=markdown) [#### Defending against Phantom Taurus with Cortex](https://origin-researchcenter.paloaltonetworks.com/blog/security-operations/the-rise-of-phantom-taurus-unmasking-a-stealthy-new-threat-to-global-security-with-cortex/) ### [Announcement](https://www.paloaltonetworks.com/blog/category/announcement/?ts=markdown), [Must-Read Articles](https://www.paloaltonetworks.com/blog/security-operations/category/must-read-articles/?ts=markdown), [News and Events](https://www.paloaltonetworks.com/blog/security-operations/category/news-and-events/?ts=markdown), [Product Features](https://www.paloaltonetworks.com/blog/security-operations/category/product-features/?ts=markdown) [#### Cortex Copilot - Another Step Forward in SOC Transformation](https://origin-researchcenter.paloaltonetworks.com/blog/security-operations/cortex-copilot-another-step-forward-in-soc-transformation/) ### Subscribe to Security Operations Blogs! Sign up to receive must-read articles, Playbooks of the Week, new feature announcements, and more. ![spinner](https://origin-researchcenter.paloaltonetworks.com/blog/wp-content/themes/panwblog2023/dist/images/ajax-loader.gif) Sign up Please enter a valid email. By submitting this form, you agree to our [Terms of Use](https://www.paloaltonetworks.com/legal-notices/terms-of-use?ts=markdown) and acknowledge our [Privacy Statement](https://www.paloaltonetworks.com/legal-notices/privacy?ts=markdown). Please look for a confirmation email from us. If you don't receive it in the next 10 minutes, please check your spam folder. This site is protected by reCAPTCHA and the Google [Privacy Policy](https://policies.google.com/privacy) and [Terms of Service](https://policies.google.com/terms) apply. {#footer} {#footer} ## Products and Services * [AI-Powered Network Security Platform](https://www.paloaltonetworks.com/network-security?ts=markdown) * [Secure AI by Design](https://www.paloaltonetworks.com/precision-ai-security/secure-ai-by-design?ts=markdown) * [Prisma AIRS](https://www.paloaltonetworks.com/prisma/prisma-ai-runtime-security?ts=markdown) * [AI Access Security](https://www.paloaltonetworks.com/sase/ai-access-security?ts=markdown) * [Cloud Delivered Security Services](https://www.paloaltonetworks.com/network-security/security-subscriptions?ts=markdown) * [Advanced Threat Prevention](https://www.paloaltonetworks.com/network-security/advanced-threat-prevention?ts=markdown) * [Advanced URL Filtering](https://www.paloaltonetworks.com/network-security/advanced-url-filtering?ts=markdown) * [Advanced WildFire](https://www.paloaltonetworks.com/network-security/advanced-wildfire?ts=markdown) * [Advanced DNS Security](https://www.paloaltonetworks.com/network-security/advanced-dns-security?ts=markdown) * [Enterprise Data Loss Prevention](https://www.paloaltonetworks.com/sase/enterprise-data-loss-prevention?ts=markdown) * [Enterprise IoT Security](https://www.paloaltonetworks.com/network-security/enterprise-device-security?ts=markdown) * [Medical IoT Security](https://www.paloaltonetworks.com/network-security/medical-device-security?ts=markdown) * [Industrial OT Security](https://www.paloaltonetworks.com/network-security/medical-device-security?ts=markdown) * [SaaS Security](https://www.paloaltonetworks.com/sase/saas-security?ts=markdown) * [Next-Generation Firewalls](https://www.paloaltonetworks.com/network-security/next-generation-firewall?ts=markdown) * [Hardware Firewalls](https://www.paloaltonetworks.com/network-security/hardware-firewall-innovations?ts=markdown) * [Software Firewalls](https://www.paloaltonetworks.com/network-security/software-firewalls?ts=markdown) * [Strata Cloud Manager](https://www.paloaltonetworks.com/network-security/strata-cloud-manager?ts=markdown) * [SD-WAN for NGFW](https://www.paloaltonetworks.com/network-security/sd-wan-subscription?ts=markdown) * [PAN-OS](https://www.paloaltonetworks.com/network-security/pan-os?ts=markdown) * [Panorama](https://www.paloaltonetworks.com/network-security/panorama?ts=markdown) * [Secure Access Service Edge](https://www.paloaltonetworks.com/sase?ts=markdown) * [Prisma SASE](https://www.paloaltonetworks.com/sase?ts=markdown) * [Application Acceleration](https://www.paloaltonetworks.com/sase/app-acceleration?ts=markdown) * [Autonomous Digital Experience Management](https://www.paloaltonetworks.com/sase/adem?ts=markdown) * [Enterprise DLP](https://www.paloaltonetworks.com/sase/enterprise-data-loss-prevention?ts=markdown) * [Prisma Access](https://www.paloaltonetworks.com/sase/access?ts=markdown) * [Prisma Browser](https://www.paloaltonetworks.com/sase/prisma-browser?ts=markdown) * [Prisma SD-WAN](https://www.paloaltonetworks.com/sase/sd-wan?ts=markdown) * [Remote Browser Isolation](https://www.paloaltonetworks.com/sase/remote-browser-isolation?ts=markdown) * [SaaS Security](https://www.paloaltonetworks.com/sase/saas-security?ts=markdown) * [AI-Driven Security Operations Platform](https://www.paloaltonetworks.com/cortex?ts=markdown) * [Cloud Security](https://www.paloaltonetworks.com/cortex/cloud?ts=markdown) * [Cortex Cloud](https://www.paloaltonetworks.com/cortex/cloud?ts=markdown) * [Application Security](https://www.paloaltonetworks.com/cortex/cloud/application-security?ts=markdown) * [Cloud Posture Security](https://www.paloaltonetworks.com/cortex/cloud/cloud-posture-security?ts=markdown) * [Cloud Runtime Security](https://www.paloaltonetworks.com/cortex/cloud/runtime-security?ts=markdown) * [Prisma Cloud](https://www.paloaltonetworks.com/prisma/cloud?ts=markdown) * [AI-Driven SOC](https://www.paloaltonetworks.com/cortex?ts=markdown) * [Cortex XSIAM](https://www.paloaltonetworks.com/cortex/cortex-xsiam?ts=markdown) * [Cortex XDR](https://www.paloaltonetworks.com/cortex/cortex-xdr?ts=markdown) * [Cortex XSOAR](https://www.paloaltonetworks.com/cortex/cortex-xsoar?ts=markdown) * [Cortex Xpanse](https://www.paloaltonetworks.com/cortex/cortex-xpanse?ts=markdown) * [Unit 42 Managed Detection \& Response](https://www.paloaltonetworks.com/cortex/managed-detection-and-response?ts=markdown) * [Managed XSIAM](https://www.paloaltonetworks.com/cortex/managed-xsiam?ts=markdown) * [Threat Intel and Incident Response Services](https://www.paloaltonetworks.com/unit42?ts=markdown) * [Proactive Assessments](https://www.paloaltonetworks.com/unit42/assess?ts=markdown) * [Incident Response](https://www.paloaltonetworks.com/unit42/respond?ts=markdown) * [Transform Your Security Strategy](https://www.paloaltonetworks.com/unit42/transform?ts=markdown) * [Discover Threat Intelligence](https://www.paloaltonetworks.com/unit42/threat-intelligence-partners?ts=markdown) ## Company * [About Us](https://www.paloaltonetworks.com/about-us?ts=markdown) * [Careers](https://jobs.paloaltonetworks.com/en/) * [Contact Us](https://www.paloaltonetworks.com/company/contact-sales?ts=markdown) * [Corporate Responsibility](https://www.paloaltonetworks.com/about-us/corporate-responsibility?ts=markdown) * [Customers](https://www.paloaltonetworks.com/customers?ts=markdown) * [Investor Relations](https://investors.paloaltonetworks.com/) * [Location](https://www.paloaltonetworks.com/about-us/locations?ts=markdown) * [Newsroom](https://www.paloaltonetworks.com/company/newsroom?ts=markdown) ## Popular Links * [Blog](https://www.paloaltonetworks.com/blog/?ts=markdown) * [Communities](https://www.paloaltonetworks.com/communities?ts=markdown) * [Content Library](https://www.paloaltonetworks.com/resources?ts=markdown) * [Cyberpedia](https://www.paloaltonetworks.com/cyberpedia?ts=markdown) * [Event Center](https://events.paloaltonetworks.com/) * [Manage Email Preferences](https://start.paloaltonetworks.com/preference-center) * [Products A-Z](https://www.paloaltonetworks.com/products/products-a-z?ts=markdown) * [Product Certifications](https://www.paloaltonetworks.com/legal-notices/trust-center/compliance?ts=markdown) * [Report a Vulnerability](https://www.paloaltonetworks.com/security-disclosure?ts=markdown) * [Sitemap](https://www.paloaltonetworks.com/sitemap?ts=markdown) * [Tech Docs](https://docs.paloaltonetworks.com/) * [Unit 42](https://unit42.paloaltonetworks.com/) * [Do Not Sell or Share My Personal Information](https://panwedd.exterro.net/portal/dsar.htm?target=panwedd) ![PAN logo](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/pan-logo-dark.svg) * [Privacy](https://www.paloaltonetworks.com/legal-notices/privacy?ts=markdown) * [Trust Center](https://www.paloaltonetworks.com/legal-notices/trust-center?ts=markdown) * [Terms of Use](https://www.paloaltonetworks.com/legal-notices/terms-of-use?ts=markdown) * [Documents](https://www.paloaltonetworks.com/legal?ts=markdown) Copyright © 2026 Palo Alto Networks. All Rights Reserved * [![Youtube](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/youtube-black.svg)](https://www.youtube.com/user/paloaltonetworks) * [![Podcast](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/icons/podcast.svg)](https://www.paloaltonetworks.com/podcasts/threat-vector?ts=markdown) * [![Facebook](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/facebook-black.svg)](https://www.facebook.com/PaloAltoNetworks/) * [![LinkedIn](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/linkedin-black.svg)](https://www.linkedin.com/company/palo-alto-networks) * [![Twitter](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/twitter-x-black.svg)](https://twitter.com/PaloAltoNtwks) * EN Select your language