Cortex XDR consumes and correlates data from the Cortex
Data Lake to reveal threat causalities and timelines—it's your mission
control for complete visibility into all your endpoint and network
traffic. The Cortex XDR app triggers alerts based on indicators
of compromise (including behavioral anomalies) and can send those
alerts to the Cortex Data Lake (formerly Logging Service). Cortex
XDR is a single interface from which you can investigate and triage
alerts, take remediation actions, and define policies to prevent
future attacks.