Fortinet Community

ck_FTNT · 11-23-2022

Description This article describes how to use a custom event handler in FortiAnalyzer to raise alerts for incident responses related to Hive Ransomware attacks. A report is also provided to gain historical visibility into logs. Scope This article con...

ck_FTNT · 11-20-2022

Description This article describes how to use a custom event handler in FortiAnalyzer to raise alerts for incident response related to attacks that attempt to leverage the 'Sandbreak' vm2 sandbox RCE vulnerability. A report is also provided to gain h...

ck_FTNT · 11-16-2022

Description This article describes how to use a custom event handler in FortiAnalyzer to raise alerts for incident response related to attacks that attempt to exploit the TotalFlow path traversal and command injection vulnerability in some ABB produc...

ck_FTNT · 11-08-2022

Description This article describes how to use a custom event handler in FortiAnalyzer to raise alerts for incident response related to attacks that attempt to leverage the OpenSSL Email address buffer overflow vulnerability. A report is also provided...

ck_FTNT · 11-03-2022

Description This article describes how to use a custom event handler in FortiAnalyzer to raise alerts for incident responses related to attacks that attempt to bypass FortiGate authentication on administrative interfaces. A report is also provided to...

ck_FTNT · 10-27-2022

Hi FortiMax_it, The first issue is likely a bug 781654 EMS does not remove dashboard outbreak alerts when endpoint disconnects. https://docs.fortinet.com/document/forticlient/7.0.7/ems-release-notes/310815/known-issues To elaborate, the root cause of...

ck_FTNT · 12-15-2021

The error "adom type mismatching" when uploading "Log4j2 Report.dat" means you are not uploading the report to a Fabric type ADOM as mentioned in step 4). https://docs.fortinet.com/document/fortianalyzer/6.4.7/administration-guide/718923/root-adom

ck_FTNT · 10-25-2019

NON-JOIN combination: SELECT t.srcip, t.dstip, t.dstcountry, v.eventtype, v.ref FROM $log-virus v, $log-traffic t WHERE t.srcip=v.srcip AND t.srcport=v.srcport AND t.dstip=v.dstip AND t.dstport=v.dstport INNER JOIN: SELECT t.srcip, t.dstip, t.dstcoun...

ck_FTNT · 01-30-2019

Hi Mark, You can download the full installer from our support site (support.fortinet.com). After logging in, hover over Download and select Firmware Images. Then use the dropdown to select FortiClient and adjust the red box below from Release Notes t...

ck_FTNT · 01-30-2019

Hi Ju, You did not specify which version you are on, however there is a known issue which was resolved in FortiClient 6.0.4. Please see the 6.0.4 release notes Resolved Issues section (https://docs.fortinet.com/d/forticlient-6.0.4-windows-release-not...

Fortinet Community

User Statistics

User Activity

Technical Tip: Using FortiAnalyzer to detect Hive Ransomware attacks | CVE-2021-31207, CVE-2021-34473, CVE-2021-34523, CVE-2021-42321

Technical Tip: Using FortiAnalyzer to detect Sandbreak vm2 sandbox RCE vulnerability attacks | CVE-2022-36067

Technical Tip: Using FortiAnalyzer to detect TotalFlow Path Traversal vulnerability attacks | CVE-2022-0902

Technical Tip: Using FortiAnalyzer to detect OpenSSL X.509 Email Address Buffer Overflow vulnerabilities | CVE-2022-3602, CVE-2022-3786

Technical Tip: Using FortiAnalyzer to detect FG-IR-22-377 FortiGate vulnerability

Re: ForticlientEMS: FortiGuard Outbreak Detection

Re: Technical Tip: Using FortiAnalyzer to detect activities related to exploits of Apache Log4j2 vulnerability

Re: How to join two logs on SQL?

Re: FortiClient offline installer

Re: "FortiClient Logging daemon - FCDBLog.exe" high CPU and RAM

Technical Tip: Using FortiAnalyzer to detect OpenS...

Re: ForticlientEMS: FortiGuard Outbreak Detection

Technical tip: Using FortiAnalyzer to detect the C...

Technical Tip: Creating alerts when FortiAnalyzer ...

Re: ForticlientEMS: FortiGuard Outbreak Detection

Re: How to join two logs on SQL?

Broad. Integrated. Automated.

Security Research

Company

News & Articles

Contact Us

User Statistics

User Activity

Broad. Integrated. Automated.

Social Media

Security Research

Company

News & Articles

Contact Us