Later this month the new version 2.2 of ASGARD Analysis Cockpit will be released. These are the most important new features. The Optimize Button The new "Optimize" button allows you to add all unassigned log lines to existing cases with matching filters. It is...
Sigma is a rule format for threat detection in log files. It is for log data what "Snort rules" are for network traffic or "YARA signatures" are for file data. It is easy to write and read. Writing a Sigma rule is a matter of minutes. On the right you can see a simple...
The new THOR version 8.44 comes with some interesting new features. TLS/SSL Syslog Transmission THOR version 8.44.0 supports the Syslog log transmission in an SSL/TLS encrypted form. Just set the value "TCPTLS" as protocol in the 4th position of the target definition....