Quantcast
Channel: Questions in topic: "splunk-enterprise"
Viewing all articles
Browse latest Browse all 47296

Cylance Protect data integration with Enterprise Security ES

$
0
0
Hi, I need to use the Cylance Protect syslog data in Enterprise Security. Has anyone used this data in ES context ? What data models does the data to map to and whether any additional field extractions are required ? Just an FYI - I'm receiving the following Cylance Protect sourcetypes. The Cylance TA and App are able to parse and display data and information respectively. syslog_audit_log syslog_device syslog_script_control Any pointers/directions are appreciated! Best Regards, Shreedeep Mitra.

Viewing all articles
Browse latest Browse all 47296

Trending Articles



<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>