Tag: Cortex XSIAM

AI-Driven IOC Conversion for Palo Alto Cortex XSIAM Queries
AI-Driven IOC Conversion for Palo Alto Cortex XSIAM Queries

How It Works Uncoder AI translates threat intelligence into Cortex XSIAM detection logic by ingesting structured IOCs and extracting relevant execution behaviors. This example focuses on the WRECKSTEEL campaign (CERT-UA#14283), a PowerShell-based stealer that abuses native tools and network requests to exfiltrate data. On the left, Uncoder AI parses dozens of SHA256 hashes, filenames, scripts […]

Read More
Enhancing Cortex XQL Threat Detection with Full Summary in Uncoder AI
Enhancing Cortex XQL Threat Detection with Full Summary in Uncoder AI

As attackers become more creative in bypassing traditional network defenses, analysts need fast, clear insight into the logic behind complex detection rules. That’s where Uncoder AI’s Full Summary feature becomes a game-changer—especially for teams working with Palo Alto Cortex XSIAM Query Language (XQL). In a recent use case, Uncoder AI helped threat hunters break down […]

Read More