Manage Global BIOC Rules - Administrator Guide - Cortex XDR - Cortex - Security Operations

Cortex XDR Documentation

Product
Cortex XDR
Creation date
2024-03-06
Last date published
2024-10-09
Category
Administrator Guide
Abstract

Update and copy BIOC rules, and add rule exceptions in Cortex XDR.

Global BIOC rules are detection rules created by Cortex and distributed to the tenants. Cortex XDR checks automatically for the latest update of global BIOC rules. If there are no new global BIOC rules, Cortex XDR displays a content status of Content up to date next to the BIOC rules table heading. A dot to the left of the rule name indicates a global BIOC rule.

You can also view the optional Source field to see which rules are pushed by Palo Alto Networks.