Security Operations

Creating an Automated Workflow for Account Lockout Resolution

Creating an Automated Workflow for Account Lockout Resolution

This playbook automates and speeds up response to excessive user account lockouts, which could indicate a credential-based attack.
Apr 10, 2025
Automating Response to Unauthorized Scheduled Task Executions

Automating Response to Unauthorized Scheduled Task Executions

Discover how Cortex XSIAM automates detection and response to malicious scheduled tasks that reference external HTTP/FTP sources for improved security...
Apr 03, 2025
Automating Response to Unauthorized Tor Logins

Automating Response to Unauthorized Tor Logins

The A Successful Login from Tor playbook in Cortex XSIAM enhances security teams’ ability to detect and respond to unauthorized access attempts using Tor. By automating identity verification, automated remediat...
Mar 27, 2025
Automating Response to Suspicious Process Executions

Automating Response to Suspicious Process Executions

This playbook automates the investigation and response to suspicious process executions triggered by a scheduled task.
Mar 20, 2025

Subscribe to the Newsletter!

Sign up to receive must-read articles, Playbooks of the Week, new feature announcements, and more.