Cortex XDR is your mission control for complete visibility into network traffic and user behavior. Cortex XDR applies machine learning at cloud scale to rich network, endpoint, and cloud data, so you can quickly find and stop targeted attacks, insider abuse and compromised endpoints and correlates data from the Cortex Data Lake to reveal threat causalities and timelines.
Review the newest features and known issues for Cortex XDR.
Learn about XQL, the Cortex XDR query language that you can use to investigate network and endpoint activity captured in raw logging data.
View all Cortex XDR APIs.
Discover the xdr_data dataset and Cortex XDR presets that you can use with XQL.
View all Cortex XDR Analytics alerts.
The Cortex XDR Agent Administrator's Guide describes the requirements for and how to install and use Cortex XDR agent.
Learn more about the new features, known issues, and changes to default behavior in Cortex XDR agent.