Cortex XDR File Open - Partially implemented

Question

Cortex XDR File Open - Partially implemented

Closed this issue a year ago · 2 comments

The list stated that Cortex XDR does not have FILE Open telemetry, but it's available for Linux an Mac, this should marked as partially at least reference: https://docs-cortex.paloaltonetworks.com/r/Cortex-XDR/Cortex-XDR-Pro-Administrator-Guide/Endpoint-Data-Collection

Answer 1 · 2024-03-07T17:47:31.000Z

Hey @tiagohide , thanks for the PR. We only have the telemetry table for windows at the moment. Will keep in mind for we we start the Linux one 🙂

Answer 2 · 2024-03-07T17:52:36.000Z

Thanks, @tsale. It would be nice to call it out in the README, as it is not very clear that this EDR list is only for Windows.
Thank for the effort on this project, very insightful