Investigation Profiles for Analysts
January 21, 2019
RSA NetWitness v11.2 introduced a very useful feature to the Investigation workflow with the...
What's that Service again?
January 21, 2019
Most people don't remember the well known port number for a particular network protocol. Sometimes...
Log Device Health Report
January 21, 2019
There have been many improvements made over the past several releases to the RSA NetWitness product...
What's on your wire: Splunk forwarder traffic
January 21, 2019
Often times, RSA NetWitness Packet decoders are configured to monitor not only ingress and egress...
Dynamic Email Alerts with ESA
January 4, 2019
I helped one of my customers implement a use case last year that entailed sending email alerts to...
Amazon VPC Flow & RSA NetWitness Integration
January 3, 2019
Amazon Virtual Private Clouds (VPC) are used in hybrid cloud enterprise environments to securely...
NetWitness Concentrator Group Aggregation
December 17, 2018
This video covers the following topics: 1. Design and setup of the Concentrator group...
Hunting Automation with RSA NetWitness Orchestrator (Alpha)
December 13, 2018
Usage How It Works Playbook Logic The Hunting Model huntingcontent.json huntingcontentmodel.json ...
RSA Named a Leader in 2018 Gartner Magic Quadrant for SIEM
December 5, 2018
We are extremely proud to announce that RSA has been positioned as a “Leader” by Gartner®, Inc. in...
Application Rules Cheat Sheet!
November 28, 2018
If you've ever wondered what levers you have available to pull for creating application rule logic...