This instructor-led training shows you how to use the Cortex XDR management console's Incidents pages to look into assaults. It defines causality chains, alerts versus logs, the Analytics Engine's detectors, log stitching, and the ideas of analytics and causation.
Course Price : $1695 Per Participant
This instructor-led training shows you how to use the Cortex XDR management console's Incidents pages to look into assaults.
It defines causality chains, alerts versus logs, the Analytics Engine's detectors, log stitching, and the ideas of analytics and causation.
You will gain knowledge of how to utilize the EDL service, remote script execution, and remedial recommendations, as well as the Causality and Timeline Views to analyze alerts.
How to make use of the data gathered is covered in depth throughout several modules.
In one section, you'll craft standard query formats, while in another, you'll develop XDR policies.
The lesson shows how to use investigation views like IP and Hash Views to examine artifact information graphically. In addition, XQL (XDR Query Language) is introduced.
The last section of the course covers the Cortex XDR API for receiving external alerts and other forms of external data collecting.
Courses
Years of Experience
Global Learners
©2023 Microtek Learning – All Rights Reserved