ขนาดวิดีโอ: 1280 X 720853 X 480640 X 360
แสดงแผงควบคุมโปรแกรมเล่น
เล่นอัตโนมัติ
เล่นใหม่
Do this SOFELK have parser to parse windows and Linux log fields. The provided ELK in FOR508 dosent have parser to parse windows logs, so I find very difficult to pivot the logs for investigation.
Any experience integrating SOF-ELF with SIGMA rules?
sigma nutz
is there way to get the large set of logs downloadable from your web portal (which you mentioned that you have during the talk, size 500GB ?)
Do you have them available to people? I have them already on 3 jump drives, but only because I went to the Bootcamp.
Dear fleetr06 ,Is there a way to share(if it is ok with the trainer)
@@stelluspereira I don't have a way to host them, but if I was you I would reach out to SANs. They are pretty cool.
fleetr06 , Thankyou SirI am not sure how to reach them
@@fleetr06 , i can send you an usb drive, what would best way to contact you
wow
![ILLSLICK - KILLSHOT REMIX [FULL VERSION]](http://i.ytimg.com/vi/RIK8RrqIAzE/mqdefault.jpg)
Do this SOFELK have parser to parse windows and Linux log fields. The provided ELK in FOR508 dosent have parser to parse windows logs, so I find very difficult to pivot the logs for investigation.
Any experience integrating SOF-ELF with SIGMA rules?
sigma nutz
is there way to get the large set of logs downloadable from your web portal (which you mentioned that you have during the talk, size 500GB ?)
Do you have them available to people? I have them already on 3 jump drives, but only because I went to the Bootcamp.
Dear fleetr06 ,
Is there a way to share(if it is ok with the trainer)
@@stelluspereira I don't have a way to host them, but if I was you I would reach out to SANs. They are pretty cool.
fleetr06 , Thankyou Sir
I am not sure how to reach them
@@fleetr06 , i can send you an usb drive, what would best way to contact you
wow