RE: sentinelone integration

DusanTomic · 02-15-2022

FortiSIEM 6.4.0 introduces the ability of enriching Analytics with information from Lookup Tables to provide insight into the data being retrieved from logs. It also introduces the ability to create Correlation Rules based on contents and conditions ...

DusanTomic · 10-09-2020

Please find attached a HOWTO on monitoring our hardware appliances.------------------------------Dušan Tomić - Consulting Systems Engineer INTLFortinet------------------------------

DusanTomic · 10-09-2020

DusanTomic · 04-01-2019

Hello,This howto will teach you how to import IOCs using STIX/TAXII.More specifically Malware Domains, IPs, URLs and Hashes.Kind Regards,------------------------------Dušan Tomić - Consulting Systems Engineer INTLFortinet-----------------------------...

DusanTomic · 04-01-2019

DusanTomic · 07-25-2022

Hi Martin,You can try this file: https://fortinet.egnyte.com/dl/uxy5TIwVEqKind Regards,Dusan

DusanTomic · 03-23-2021

Hi Isuru,It supports RDS, EFS and EC2 metrics using the EC2 credential method.Using Kinesis credential method it supports all services that can log to S3 using Kinesis. You'll need to create a credential per each Kinesis/S3 pair.Using Cloudtrail it s...

DusanTomic · 03-23-2021

Hi Carlos,You typically need the MIBs in the IMPORT section in the same folder: SNMPv2-SMI SNMPv2-TC SNMPv2-CONF Kind Regards,------------------------------Dušan Tomić - Consulting Systems Engineer INTLFortinet----------------------------------------...

DusanTomic · 12-28-2020

Hi Ali, Logins would be visible in the web server. Like Henry suggested, enable logging on all fields. Depending on the webserver you may need to install an agent to forward the logs to FortiSIEM (if the webserver stores the logs in a file and isn't ...

DusanTomic · 12-28-2020

Hi Muhammad, You can replace the system parser used in 5.3.1 by following these steps: 1) Go to Admin / Device Support / Parsers 2) Search for IronPort Web and disable it 3) Clone that same disabled IronPort Web parser 4) In the parser XML section, r...

User Statistics

User Activity

FortiSIEM 6.4 Lookup Tables

Monitoring FortiSIEM Hardware Appliances

Monitoring FortiSIEM Hardware Appliances

HOWTO – STIX/TAXII with AlienVault OTX (OTX DirectConnect API)

HOWTO – STIX/TAXII with AlienVault OTX (OTX DirectConnect API)

Hi Martin, You can try this file: https://fortinet.egnyt...

RE: FortiSIEM - AWS Integration

RE: Problem Converting mib to xml

RE: Integrating Web App logins

RE: Cisco Ironport Log Issues

RE: sentinelone integration

FortiSIEM

KCS

User Statistics

User Activity

You are leaving our website