Health and Wellness Using Kibana (11.4 BETA)
February 25, 2020
(view in My Videos) The Health and Wellness (BETA) feature is an advanced, robust, and...
Identifying Multi-Valued Metas in the RSA NetWitness Platform
February 22, 2020
The concept of multi-valued meta keys - those which can appear multiple times within single...
Detecting Living-Off-The-Land tactics with the RSA NetWitness Platform
February 22, 2020
What are LotL tactics? Living-Off-The-Land tactics are those that involve the use of legitimate...
Around the Fire With Old Friends (CVE-2019–0604, and CVE-2017-0144)
February 14, 2020
In this post we will cover CVE-2019-0604 (https://nvd.nist.gov/vuln/detail/CVE-2019-0604), albeit a...
11.4 AWS Full Stack Deployment
February 3, 2020
Hi everyone! In this video blog, I provide a demo of getting an 11.4 RSA NetWitness Platform full...
Using Respond for Data Exploration
January 31, 2020
Did you know that you can use Respond for data exploration, even if you aren't using it for...
Visualization Enhancements in RSA NetWitness Platform 11.4
January 31, 2020
Visualization techniques can help an analyst make sense of a given data set by exposing scale,...
NetWitness Platform 11.4 is Near!
January 30, 2020
The newest version of the RSA NetWitness Platform is almost here! We’re excited to release the...
Setting Up High Availability with Multiple Endpoint Log Hybrids
January 20, 2020
HA is a common need in many enterprise architectures, so NetWitness Endpoint has some built-in...
Using the RSA NetWitness Platform to Detect Lateral Movement: SCShell (DCE/RPC)
January 16, 2020
A couple of months ago, Mr-Un1k0d3r released a lateral movement tool that solely relies on DCE/RPC (