Release Highlights - Release Notes - Cortex XSIAM - Cortex

The following are the key highlights for this release.

Feature	Description
AgentiX AI Agent Workforce	Cortex Agentic Assistant: Go beyond rigid playbooks and command autonomous agents based on over 1.2 billion real-world playbook executions and governed by robust guardrails, to dynamically plan, reason and take action to solve any security challenge. Access agents through Cortex Agentic Assistant, the evolved Cortex Copilot. Note Cortex Agentic Assistant is included in XSIAM. Availability of agentic capabilities may depend on specific licenses and is subject to supported regions. Native MCP support: Now available in Beta, the Cortex MCP Server lets trusted LLM applications securely connect to XSIAM and access data and insights in real time using natural language prompts.
Federated Search in Cortex Extended Data Lake (XDL)	Now available in Beta, you can seamlessly query across external datasets stored in AWS, GCP, or Azure. Search and analyze remote data directly from XSIAM using XQL - without ingesting it or incurring additional storage costs.
Forensics for Linux	Forensic customers can now run complete investigations across Windows, macOS, and Linux, with deeper artifact collection and analysis from Linux endpoints.
Flexible Customization for Analytics Rules	Align detection rules with your organization's unique risk profile. You can now easily adjust the severity of the alerts generated by our powerful, built-in analytics rules.

Release Highlights - Release Notes - Cortex XSIAM - Cortex - Security Operations