Use SA ESM database for enrichment with multi-indexed feed
May 11, 2016
RSA Security Analytics has built-in Event Source Management (ESM) capability which provides an easy...
Custom Log Collection Content in SA
May 9, 2016
This post will be a series of How-To videos and supporting documents on creating custom content for...
Script to Download Content from RSA Live
April 25, 2016
Synopsis The attached script will allow you to download content available from RSA Live in a CSV...
Troubleshooting ESA Memory Rule Usage
April 19, 2016
I had a look in my test system today and noticed that my ESA Trial Rules had been disabled. ...
Held for Ransom: A case study of a recent ransomware attack
April 18, 2016
Authors: Chris Ahearn Mark Stacey There has been a lot of attention around ransomware attacks in...
BADLOCK Samba Vulnerability: ECAT is NOT affected
April 13, 2016
On April 12, Microsoft issued a vulnerability update, to inform its customers that a vulnerability...
Decrease Storage Costs with Selective Log Retention
April 8, 2016
Security Analytics 10.6 has new feature that will allow you to significantly reduce your storage...
Detecting Malicious Domains With Behavior Analytics
April 8, 2016
What if you could find hosts in your network that are actively communicating with previously...
Is Security Analytics translated to languages other than English?
April 7, 2016
Security Analytics is available in three languages. The three languages are German, Spanish and ...
Little Known Security Analytics Queries
March 31, 2016
It is a surprise to me how many people do not know all the operators available to them in the query...