New Cortex Xpanse Expander features and enhancements released in December 2022.
The table below describes the features and enhancements introduced in the Expander 2.0 release in December 2022.
Feature | Description |
---|---|
Cortex Xpanse Active Response Module | The Cortex Xpanse Active Response module automates exposure remediation using out-of-the-box playbooks that run whenever a new alert is created. The playbook execution changes dynamically based on the details of the alert and the integrations that have been configured, and will potentially identify service owners, discover business context, send notifications, and in certain cases, fully remediate misconfigurations via control plane integrations. At key points in the workflow, the playbook prompts you for input, enabling you to make remediation decisions while still getting the benefits of automation. Fully automated remediation is available as an option only when the following conditions are met:
See Active Response for Incidents in the Cortex Xpanse Expander User Guide for details. NoteThe Active Response Module is available as a free community trial for Cortex Xpanse Expander customers until June 2023. Beginning in July 2023 it will become an add-on module that must be purchased. |
Web Attack Surface Management | Web ASM continuously discovers and monitors insecure websites, web components, and technologies running on your managed and unmanaged web assets. Web ASM scans your public-facing websites, creating a continuously updated inventory of your web assets, including the server software and other technologies powering your web infrastructure. The Web ASM Dashboard provides an ongoing view of your web attack surface enabling you to find insights around various areas of web risk and monitor your web resources at a high level and drill down into the details as needed. See Websites in the Cortex Xpanse Expander User Guide for details. |
Enterprise Features |
|
Supported Integrations | The following integrations are supported in Expander 2.0:
See Automation Integrations for information about how to install and configure integrations. |