External alerts using External Issue Mapping - Learn more about collecting alerts from any external source using External Issue Mapping in Cortex XSIAM. - Administrator Guide - Cortex XSIAM - Cortex - Security Operations

For a more complete and detailed picture of the activity involved in a case, Cortex XSIAM can ingest alerts from any external source. Cortex XSIAM stitches the external alerts together with relevant endpoint data and displays alerts from external sources in relevant cases and issues tables. You can also see external alerts and related artifacts and assets in causality views. For example, in the Issues table, right-click an issue and select Investigate Causality Chain.