Tests with Cortex XDR 8.0.0.30814 and above (no issue)
Opened this issue · 0 comments
FLX-0x00 commented
Hey guys, first of all: Thanks for the research and of course for sharing it with the infosec community.
We have access to a Cortex protected infrastructure and have tested the tool with version 8.0.0.30814. As expected, it works fine and the database can be pulled with administrative access in an unencrypted state. I want to keep this "issue" open (it's fine for you guys) to continue writing our experience with testing higher versions of cortex. Currently it is not possible to install a newer version over the XDR platform. As soon as a version 8.1 is available, we will test the tool again and provide feedback in this issue.
Cheers.