I would also reference the Netwitness API documentation for 12.x and it
should be all in there for you. You will need to use multiple connectors
from the Fortisoar connector library.
You have to pull Netwitness Incidents, then alerts and take the alert
data and pull from the specific Concentrator and yes it can be set to a
schedule.
Reach out to Crowdstrike Support. A lot of times they have to enable the
specific functions in the api to work. Also what version of Crowdstrike
are you running. We also run Crowdstrike for some of our customers. Is
your connector connecting at all? ...
Great news! -- Chris Ichelson 360 SOC Inc. (formally HTG 360 Inc.)
Direct: 480-685-8029 (O): 480-685-8028 (F): 866-278-5578 (M):
480-993-6941 Book on my Calendar by using my Calendly: View and Book
Time by Clicking Here Need to Send Me a Secure File ...
Mahdi, I see yours in under the Incident response module. I checked that
as well and do not see this. We started a long time ago several years.
Does this just need to be added? -- Chris Ichelson 360 SOC, an HTG 360
Inc. Company Direct: 480-685-8029 (...
