Does anyone have the widgets for 6.4? I thought Fortinet had like MITRE Widgets and such?

Christopher_Ichelson · ‎03-31-2021

Does anyone have the widgets for 6.4? I thought Fortinet had like MITRE Widgets, demo data etc... and such?

Anyone with thoughts here?

Mahdi1 · ‎04-01-2021

I'm not sure what do you mean by Widgets, the whole MITRE db is available in its module :

ajJUJo4dSaywx80Cv4Yg_MITRE-8blJSfNNzZ-T.jpg
you can use the MITRE fields to populate descriptions, alerts/incidents relationships ...etc.

-------------------------------------------
Original Message:
Sent: Mar 31, 2021 05:37 AM
From: Christopher Ichelson
Subject: Does anyone have the widgets for 6.4? I thought Fortinet had like MITRE Widgets and such?

Does anyone have the widgets for 6.4? I thought Fortinet had like MITRE Widgets, demo data etc... and such?

Anyone with thoughts here?

Christopher_Ichelson · ‎04-02-2021

I cannot seem to find the MITRE stuff you are showing.

I do show the node and sla widget.

I checked the navigation settings to see if was in there.

Can you screenshot where you find that in your GUI.

Chris

--

Chris Ichelson

360 SOC, an HTG 360 Inc. Company
Direct: 480-685-8029

(O): 480-685-8028
(F): 866-278-5578
(M): 480-993-6941

Need to Send Me a Secure File or Secure Email by using my SendSafely Link: Click Here to Send Now

Notice: 360 SOC is a division of HTG 360, Inc. This message and any attachments are confidential and may also be legally privileged. If you are not the intended recipient, please notify the sender immediately. You must not copy this message or use it for any purpose nor publish or disclose its contents to any other person.

-------------------------------------------
Original Message:
Sent: 4/1/2021 11:38:00 AM
From: Mahdi
Subject: RE: Does anyone have the widgets for 6.4? I thought Fortinet had like MITRE Widgets and such?

I'm not sure what do you mean by Widgets, the whole MITRE db is available in its module :

ajJUJo4dSaywx80Cv4Yg_MITRE-8blJSfNNzZ-T.jpg
you can use the MITRE fields to populate descriptions, alerts/incidents relationships ...etc.

-------------------------------------------
Original Message:
Sent: Mar 31, 2021 05:37 AM
From: Christopher Ichelson
Subject: Does anyone have the widgets for 6.4? I thought Fortinet had like MITRE Widgets and such?

Does anyone have the widgets for 6.4? I thought Fortinet had like MITRE Widgets, demo data etc... and such?

Anyone with thoughts here?

Christopher_Ichelson · ‎04-02-2021

Mahdi,

I see yours in under the Incident response module. I checked that as well and do not see this. We started a long time ago several years. Does this just need to be added?

--

Chris Ichelson

360 SOC, an HTG 360 Inc. Company
Direct: 480-685-8029

(O): 480-685-8028
(F): 866-278-5578

Need to Send Me a Secure File or Secure Email by using my SendSafely Link: Click Here to Send Now

Notice: 360 SOC is a division of HTG 360, Inc. This message and any attachments are confidential and may also be legally privileged. If you are not the intended recipient, please notify the sender immediately. You must not copy this message or use it for any purpose nor publish or disclose its contents to any other person.

-------------------------------------------
Original Message:
Sent: 4/2/2021 7:39:00 AM
From: Christopher
Subject: RE: Does anyone have the widgets for 6.4? I thought Fortinet had like MITRE Widgets and such?

I cannot seem to find the MITRE stuff you are showing.

I do show the node and sla widget.

I checked the navigation settings to see if was in there.

Can you screenshot where you find that in your GUI.

Chris

--

Chris Ichelson

360 SOC, an HTG 360 Inc. Company
Direct: 480-685-8029

(O): 480-685-8028
(F): 866-278-5578
(M): 480-993-6941

Need to Send Me a Secure File or Secure Email by using my SendSafely Link: Click Here to Send Now

Notice: 360 SOC is a division of HTG 360, Inc. This message and any attachments are confidential and may also be legally privileged. If you are not the intended recipient, please notify the sender immediately. You must not copy this message or use it for any purpose nor publish or disclose its contents to any other person.

-------------------------------------------
Original Message:
Sent: 4/1/2021 11:38:00 AM
From: Mahdi
Subject: RE: Does anyone have the widgets for 6.4? I thought Fortinet had like MITRE Widgets and such?

I'm not sure what do you mean by Widgets, the whole MITRE db is available in its module :

ajJUJo4dSaywx80Cv4Yg_MITRE-8blJSfNNzZ-T.jpg
you can use the MITRE fields to populate descriptions, alerts/incidents relationships ...etc.

-------------------------------------------
Original Message:
Sent: Mar 31, 2021 05:37 AM
From: Christopher Ichelson
Subject: Does anyone have the widgets for 6.4? I thought Fortinet had like MITRE Widgets and such?

Does anyone have the widgets for 6.4? I thought Fortinet had like MITRE Widgets, demo data etc... and such?

Anyone with thoughts here?

Mahdi1 · ‎04-02-2021

Chris,
I recommend you upgrade your instance to 6.4.4 (make sure you respect the upgrade path). the MITRE module should be part of the content pack ( yum install fsr-ir-content-pack) not recommended though to install it on a production system, if you only need the MITRE module you can open the rpm and take the module JSON definition which you can then import to your instance.
-Mahdi-------------------------------------------
Original Message:
Sent: Apr 02, 2021 04:42 AM
From: Christopher Ichelson
Subject: Does anyone have the widgets for 6.4? I thought Fortinet had like MITRE Widgets and such?

Mahdi,

I see yours in under the Incident response module. I checked that as well and do not see this. We started a long time ago several years. Does this just need to be added?

--

Chris Ichelson

360 SOC, an HTG 360 Inc. Company
Direct: 480-685-8029

(O): 480-685-8028
(F): 866-278-5578

Need to Send Me a Secure File or Secure Email by using my SendSafely Link: " style="color: rgb(0, 0, 100)">Click Here to Send Now

Notice: 360 SOC is a division of HTG 360, Inc. This message and any attachments are confidential and may also be legally privileged. If you are not the intended recipient, please notify the sender immediately. You must not copy this message or use it for any purpose nor publish or disclose its contents to any other person.

Original Message:
Sent: 4/2/2021 7:39:00 AM
From: Christopher
Subject: RE: Does anyone have the widgets for 6.4? I thought Fortinet had like MITRE Widgets and such?

I cannot seem to find the MITRE stuff you are showing.

I do show the node and sla widget.

I checked the navigation settings to see if was in there.

Can you screenshot where you find that in your GUI.

Chris

--

Chris Ichelson

360 SOC, an HTG 360 Inc. Company
Direct: 480-685-8029

(O): 480-685-8028
(F): 866-278-5578
(M): 480-993-6941

Need to Send Me a Secure File or Secure Email by using my SendSafely Link: " style="color: rgb(0, 0, 100)">Click Here to Send Now

Notice: 360 SOC is a division of HTG 360, Inc. This message and any attachments are confidential and may also be legally privileged. If you are not the intended recipient, please notify the sender immediately. You must not copy this message or use it for any purpose nor publish or disclose its contents to any other person.

Original Message:
Sent: 4/1/2021 11:38:00 AM
From: Mahdi
Subject: RE: Does anyone have the widgets for 6.4? I thought Fortinet had like MITRE Widgets and such?

I'm not sure what do you mean by Widgets, the whole MITRE db is available in its module :

ajJUJo4dSaywx80Cv4Yg_MITRE-8blJSfNNzZ-T.jpg
you can use the MITRE fields to populate descriptions, alerts/incidents relationships ...etc.

Original Message:
Sent: Mar 31, 2021 05:37 AM
From: Christopher Ichelson
Subject: Does anyone have the widgets for 6.4? I thought Fortinet had like MITRE Widgets and such?

Does anyone have the widgets for 6.4? I thought Fortinet had like MITRE Widgets, demo data etc... and such?

Anyone with thoughts here?

Does anyone have the widgets for 6.4? I thought Fortinet had like MITRE Widgets and such?

Nominate a Forum Post for Knowledge Article Creation