This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Register Now
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
EdPadilla
Occasional Contributor
Occasional Contributor
since ‎2020-08-12
‎2022-08-05

User Statistics

  • 20 Posts
  • 0 Solutions
  • 541 Likes given
  • 4 Likes received

User Activity

How to build ESA rule to detect inbound and outbound traffic from restrictive countries with executables

2022-06-28
Seeking assistance to build ESA rules for alerting/reporting on traffic from a list of restrictive countries say Russia, etc that it contents has executables like .exe, dll, bin, bat, VBS, JS, etc Thanks

Newbie here. How to setup Netwitness metadata feed into Splunk

2022-05-26
Newbie here. How to setup Netwitness metadata feed into Splunk. If possible be has granular or detail for me

Perform selective query for metadata below, and send to SIEM

2022-05-09
Any suggestions or ideas building query to retrieve the following: ip.srcip.dstcountry.dstcity.dstdomain.dstaction (country.dst = 'Albania' OR country.dst = 'Armenia' OR country.dst = 'Azerbaijan' OR country.dst = 'Belarus' OR country.dst = 'Cambodia...

How to send selective metadata (ex. citrixworkspacesapi.net") to a Siem

2022-03-24
Can someone direct me to documentation, how to build a specific metadata (see subject ) to Splunk

I need to clone an ESA Rule "Web DoS Attack"

2022-02-21
I need/want to clone ESA rule "Web Dos Attack". We would like to keep the default rule, and create clone one for tuning by Intel Analysts.
View more
Likes from
View all
Likes given to
© 2022 RSA Security LLC or its affiliates. All rights reserved.