I would like to better understand the FortiNDR logs and all of their
metadata because I’m planning to integrate the logs into a SIEM.I’ve
reviewed the official Fortinet documentation, but it only includes a few
samples. I’m looking for a more compreh...
Hello Jean-Philippe, Thank you very much for your detailed and clear
response, as well as the clarifications provided.Your explanation
regarding the flexibility of certain fields, the evolving nature of NDR
subtypes, and the dynamic behavior of NetFl...
Hello again ,Thank you for your response, it was very helpful.I would
like to ask for clarification on a few points related to detection type
metadata, as this information is important for defining comprehensive
SIEM use cases. 1. Antivirus (AV) Log ...
