AsyncAPI channel · Palo Alto Networks · Cortex XSIAM Data Ingestion

`xdr_data/forwarded`

Name: xdr_data/forwarded
Creator: Palo Alto Networks

Event channel for XDR data forwarding from integrated Palo Alto Networks products including PAN-OS firewalls, Prisma Access, Cortex XDR agents, and other Strata products. Forwarded XDR data is automatically normalized and correlated within XSIAM for unified threat detection and investigation across the Palo Alto Networks security platform.

Open source AsyncAPI → All Palo Alto Networks channels Palo Alto Networks provider profile

Provider: Palo Alto Networks AsyncAPI: v2.6.0 Spec: Cortex XSIAM Data Ingestion Operations: 1 Messages: 1

Channel address

xdr_data/forwarded

Operations

onXdrDataForwarded

XDR data forwarded from a Palo Alto Networks product

Messages

XdrDataForwarded

Telemetry data forwarded from a Palo Alto Networks XDR-enabled product to XSIAM for unified detection and correlation

Content-Type: application/json

About AsyncAPI

The AsyncAPI specification describes event-driven APIs the way OpenAPI describes request/response APIs. A channel is the named pipe — a webhook URL, a Kafka topic, a WebSocket route, an MQTT subject — that producers and consumers publish or subscribe to. Each channel carries one or more messages with structured payloads, and an operation declares whether a given party sends or receives on that channel.

Browse every event-driven channel on the APIs.io network or compare with the broader Naftiko capability, Agent Skill, and MCP server surfaces of the same providers.