This instructor-led training shows you how to use the Cortex XDR management console's Incidents pages to look into assaults. It defines causality chains, alerts versus logs, the Analytics Engine's detectors, log stitching, and the ideas of analytics and causation.
Course Price : $1695 Per Participant
This instructor-led training shows you how to use the Cortex XDR management console's Incidents pages to look into assaults.
It defines causality chains, alerts versus logs, the Analytics Engine's detectors, log stitching, and the ideas of analytics and causation.
You will gain knowledge of how to utilize the EDL service, remote script execution, and remedial recommendations, as well as the Causality and Timeline Views to analyze alerts.
How to make use of the data gathered is covered in depth throughout several modules.
In one section, you'll craft standard query formats, while in another, you'll develop XDR policies.
The lesson shows how to use investigation views like IP and Hash Views to examine artifact information graphically. In addition, XQL (XDR Query Language) is introduced.
The last section of the course covers the Cortex XDR API for receiving external alerts and other forms of external data collecting.
Courses
Years of Experience
Global Learners
Examine and handle incidents
Describe the causality and analytics ideas used in Cortex XDR.
Utilize the Causality and Timeline to analyze alerts Views
Use Cortex XDR Pro features like remote script execution.
In the Query Centre, create and manage ad-hoc and planned search queries.
Create and maintain the BIOC and IOC Cortex XDR rules.
Utilizing the resources and stockpiles of Cortex XDR
To search datasets, create XQL searches and see the results,
Utilize the external-data collecting feature of Cortex XDR
Dec 21, 2023
9:00 am - 5:00 pm EST
online
Please fill the below details, and our consultant will help you in the enrollment process.
©2023 Microtek Learning – All Rights Reserved
Request a Callback
Enroll Now
Check Schedule