Cortex XSOAR

Key Benefits

Triage and Investigate Malicious Network Traffic
- Eliminate context switching with the ability to perform interactive investigations within the Cortex XSOAR War Room
- Access to purpose-built commands that presents the respective domain intelligence
- Automatically keep track of investigations performed for convenient incident reporting
- Combat significant threats when automating the triage and investigation of malicious traffic
Automate Incident Enrichment and Response
- Automate playbooks for enrichment of DNS observables
- Access to the DomainTools dataset inside of Cortex XSOAR for persistent enrichment, automated investigations, and the associated connected infrastructure
- Reduce reaction time when extracting and containing potential harmful information from malicious payloads

Support and Learning

Blog

Data Quality Makes your Security Operations SOAR

Learn More
User Guides

DomainTools App for Cortex XSOAR

Learn More
Webinars

Exploiting Your Adversary’s Weak Spot: DNS Domain Names – A Natural Fit for SOAR

Learn More

About Cortex XSOAR

Cortex^TM XSOAR is an extended Security Orchestration, Automation and Response platform that unifies case management, automation, real-time collaboration and threat intel management to transform every stage of the incident lifecycle. Teams can manage alerts across all sources, standardize processes with playbooks, take action on threat intel, and automate response for any security use case – resulting in significantly faster responses that require less manual review.