In my previous post,
I've presented an approach to develop a baseline and perform a trend
analysis with ESA. As mentioned many times, ev...
During the last few months, we have received a good number of requests
to make the material of the session Demetrio Milea and I presented at
RSA Charge 2015 back online, since no more available in the event's
website. The presentation is attached be...
The Netwitness Suite provides out-of-the-box a number of tools to
analyze your data. But there is a capability hidden under the hood which
if implemented correctly may be precious to identify additional
suspicious patterns: the development of a basel...
Good point Miha. From my understanding and for this specific use case
the Memory Pool would not completely solve the issue of the large
timeframe and may not perform in an ideal way. For sure a combination
between the multi-phase approached I've used...
Hi, for those asking how this model can be used to generate and apply a
different baseline between working days and the weekend, I'm attaching
to the post the file ESA_baseline_model_v2.2.txt. Since having the same
baseline model for multiple days is...
Hi Claude, As far as I know the bad cast error is happening because
internally TimeT is a 64 bit integer while the lua engine currently in
use only supports 32 bit integer, hence the error. My understaning (but
I'd be happy to be wrong) is that until...