In reading this post on building a small NetWitness deployment for testing and experimention https://community.netwitness.com/t5/netwitness-community-blog/tips-to-build-small-rsa-netwitness-platform-virtual-hosts/ba-p/520873 I couldn't see any refere...
Hello, I'm attempting to create a log parser for our web proxy that doesn't have a parser already for it. I've watched the YouTube series on log parser creation created by @DaveGlover . In the section about creating the header I need some assistance ...
Some time ago there was a script posted to get the retention times of the various netwitness databases. One of the options was to output the script to syslog I was curious if anyone has thought/done to send that syslog to the kibana on new health and...
Could anyone share a real-world example of using alerts generated from the reporting engine? I'm trying to think of a use case that couldn't be achieved through app rules or ESA?
It appears that the function to reset a host risk score can be run from within nw-shell. Does nw-shell have the ability to run commands in a script or be executed remotely using a SOAR tool?
