×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Ask a Question
Nomadic_Splunk
New Member
Member since: ‎08-05-2021
‎05-31-2022
Community Statistics
Posts 3
Solutions 0
Karma Given 0
Karma Received 0
Member Since ‎08-05-2021
Activity Feed
Topics I've Started
No posts to display.
View All

Re: Cortex XDR Alerts into Splunk

by in Getting Data In
‎05-31-2022 11:02 AM
‎05-31-2022 11:02 AM
@splunk_w_ro ,  Don't get me wrong, you can send them to a syslog receiver, you'll just need to write your own parsing from the pan::log SourceType which is owned by the PAN_TA which creates a really nasty problem of needing to do the changes everytime the PAN_TA is updated.  ... View more
Contact Me
Online Status
Offline
Date Last Visited
‎05-31-2022 02:53 PM