Powershell Remoting | Marketplace

Details
Content
Dependencies
Version History

Powershell Remoting enables you to remotely connect to Windows hosts to execute Powershell commands.

Note: This is a beta pack, which lets you implement and test pre-release software. Since the pack is beta, it might contain bugs. Updates to the pack during the beta phase might include non-backward compatible features. We appreciate your feedback on the quality and usability of the pack to help us identify issues, fix them, and continually improve.

Powershell Remoting is a built-in feature in Windows that enables connecting remotely to hosts in order to execute scripts and Powershell commands. By using Powershell Remoting, the SOC analyst or incident responder is able to connect to a Windows host and perform tasks such as gathering data, remediating the host, moving files to and from the host and XSOAR, and much more.

What does this pack do?

Allows you to interact with Windows hosts for actions such as acquiring forensic data.

The pack includes the Powershell Remoting integration.

Need to know

This pack is recommended to use in conjunction with the Windows Forensics Pack which contains playbooks and other content to use with this integration.

For more information, visit the Cortex XSOAR Developer Docs.

What does this pack do?

Allows you to interact with Windows hosts for actions such as acquiring forensic data.

The pack includes the Powershell Remoting integration.

Need to know

This pack is recommended to use in conjunction with the Windows Forensics Pack which contains playbooks and other content to use with this integration.

For more information, visit the Cortex XSOAR Developer Docs.

Integrations

Name	Description
PowerShell Remoting (Beta)	PowerShell Remoting is a comprehensive built-in remoting subsystem that is a part of Microsoft's native Windows management framework (WMF) and Windows remote management (WinRM). This feature allows you to handle most remoting tasks in any configuration you might encounter by creating a remote PowerShell session to Windows hosts and executing commands in the created session. The integration includes out-of-the-box commands which supports agentless forensics for remote hosts.

Name

Description

PowerShell Remoting (Beta)

PowerShell Remoting is a comprehensive built-in remoting subsystem that is a part of Microsoft's native Windows management framework (WMF) and Windows remote management (WinRM).
This feature allows you to handle most remoting tasks in any configuration you might encounter by creating a remote PowerShell session to Windows hosts and executing commands in the created session.
The integration includes out-of-the-box commands which supports agentless forensics for remote hosts.

Integrations

Name	Description
PowerShell Remoting (Beta)	PowerShell Remoting is a comprehensive built-in remoting subsystem that is a part of Microsoft's native Windows management framework (WMF) and Windows remote management (WinRM). This feature allows you to handle most remoting tasks in any configuration you might encounter by creating a remote PowerShell session to Windows hosts and executing commands in the created session. The integration includes out-of-the-box commands which supports agentless forensics for remote hosts.

Name

Description

PowerShell Remoting (Beta)

Required Content Packs (1)

Pack Name	Pack By
Base	By: Cortex XSOAR

Optional Content Packs (0)

Pack Name	Pack By

All level dependencies (2)

Pack Name	Pack By
Aggregated Scripts	By: Cortex XSOAR
Base	By: Cortex XSOAR

PUBLISHER

PLATFORMS

Cortex XSOARCortex XSIAM

INFO

Certification	Certified	Read more
Supported By	Cortex
Created	June 22, 2021
Last Release	March 22, 2026

WORKS WITH THE FOLLOWING INTEGRATIONS:

DISCLAIMER

By downloading or using Marketplace content, you agree to the applicable Terms of Use and End User License Agreement. Third-party content is provided by its publisher, and Palo Alto Networks does not warrant, endorse, support, or assume responsibility for content not expressly identified as owned by Palo Alto Networks.