Manage Global BIOC Rules - Administrator Guide - Cortex XSIAM - Cortex - Security Operations

Cortex XSIAM Documentation

Product
Cortex XSIAM
Creation date
2024-03-06
Last date published
2024-10-13
Category
Administrator Guide
Abstract

Update and copy BIOC rules, and add rule exceptions in Cortex XSIAM.

Global BIOC rules are detection rules created by Cortex and distributed to the tenants. Cortex XSIAM checks automatically for the latest update of global BIOC rules. If there are no new global BIOC rules, Cortex XSIAM displays a content status of Content up to date next to the BIOC rules table heading. A dot to the left of the rule name indicates a global BIOC rule.

You can also view the optional Source field to see which rules are pushed by Palo Alto Networks.