Custom Flat File Log Collection with NW-Endpoint 11.4
April 22, 2020
22APR2020 - UPDATE: Naushad Kasu has posted a video blog of this process and I have posted the...
RSA NetWitness Endpoint (11.4+): Custom Flat File Collection
April 22, 2020
In the following video we go through the steps to configure RSA NetWitness Endpoint Agent...
RSA NetWitness Endpoint (11.4+): Agent Rate Limiting
April 22, 2020
This video covers the Rate Limiting feature within RSA NetWitness Endpoint. The video covers...
How to Isolate a Host from the Network
April 21, 2020
(view in My Videos) This video created by the IDD team shows how to isolate a host from the...
Maze Ransomware Detection with RSA NetWitness
April 20, 2020
The Maze ransomware has recently been making the news due to some high-profile infections. In...
Easy-add Recurring Feeds
April 16, 2020
02JUN2021 Update - updated post-11.4.1 script with... better java version checking (again) IP...
Simple Overview of iDRAC and Health & Wellness
April 14, 2020
RSA NetWitness Professional Services hosted a webinar covering the initial setup of an iDRAC...
Microsoft 365, MS Threat Intelligence, Azure and Qualys Dashboards for RSA NetWitness Evolved SIEM
April 10, 2020
Interested in having a central single pane of glass view across your cloud, on-prem and virtual...
Using RSA NetWitness to Detect Ninja C2
April 9, 2020
A new C2 framework was recently added to the C2 Matrix called, Ninja. It was built on top of the...
Custom File Blacklists in NWE 11.4.x and above
April 6, 2020
Every SOC analyst should spend at least part of his/her day reading various blog posts and white...