Detecting UDP scans and getting flows from the XGS
Автор: Jose Bravo
Загружено: 2016-08-13
Просмотров: 4044
Описание:
Being able to detect sophisticated internal scans can reveal the presence of a compromise machine doing reconnancese. Qradar can detect those scanns by simply adding an application from the App Excahnge, but what can you do if you do not have the capability to grab flows? In the video we show how those flows can be collected from the XGS IPS.
To see how to configure the XGS to send flows to Qradar see this video: XGS configuration (alerts and flows) • QRadar +BigFix Integration IPS configura...
Повторяем попытку...
Доступные форматы для скачивания:
Скачать видео
-
Информация по загрузке: