Create serverless function rules - Administrator Guide - Cortex XSIAM - Cortex

Create serverless function rules - Administrator Guide - Cortex XSIAM - Cortex - Security Operations

Cortex XSIAM 3.x Documentation

Product

Cortex XSIAM

Creation date

2025-07-15

Last date published

2026-06-04

Category

Administrator Guide

You can create custom rules for serverless functions to suit your requirements. The following types of rules are supported:

Attack Path: These rules monitor the high risk attack paths for potential breaches. Refer to Create an attack path rule for serverless functions for more information
Config: These rules monitor resource configurations for potential breaches. Refer to Create a configuration rule for serverless functions for more information
Network Exposure: These rules detect assets exposed to the internet. Refer to Create a network exposure rule for serverless functions for more information