Skip navigation
All Places > Products

RSA NetWitness Platform

Log in to follow, share, and participate in this community.

Recent Activity

Amy Blackshaw
Click to view contentWe are excited to announce the latest version of the RSA NetWitness Platform!  For those of you at RSA Conference, come to the RSA Booth to see first hand the new capabilities of the platform. RSA NetWitness Platform 11.3 is also being used by the RSA Conference SOC team as they monitor the traffic in and around the Moscone Center.   New Features… (Show more)
in RSA NetWitness Platform
Brian Dunphy
RSA NetWitness Working Groups   RSA NetWitness Working Groups provide a mechanism for collaboration by the product team with our customers.  Working Groups are formed to address specific areas of the RSA NetWitness product offering with the intent to engage with customers in validating that we are building the right capabilities into the…
in RSA NetWitness Platform
Franklin Figueroa
Hello guys,   I have the following: Domain controller with Win server 2008 R2, WinRM configured and passed connectivity with Netwitness, but only can see two events security logs (log on, log off), I already double check the configuration and looks fine.   Anyone know what could be happens? 
in RSA NetWitness Platform
RSA Link Team
Date Range: Sunday, April 14th -- Saturday, April 20th   Article Title Author Last Published Date 000032658 - RSA NetWitness Logs & Network Log Decoder Hybrid continuously crashing and creating core dump files Rey Gerardo Reyes 18 Apr 2019 000032723 - RSA NetWitness Logs & Network Incident Management becomes unresponsive while loading large number…
in RSA NetWitness Platform
Joshua Randall
Click to view contentThe complete overhaul of NW-Endpoint 4.4 into NW-Endpoint 11.3 includes (among many changes) a different method for creating your own, or tuning existing, endpoint alerts.  In the old version (4.4), everything was a SQL query, but since we have moved away from Windows and SQL Server in 11.3, I'd like to shed some light on how the new process… (Show more)
in RSA NetWitness Platform
Rachid Griech
How can we reset a Powervault DAC  Raid to it's initial configuration (all the disk Unconfigured). when we are switching the DAC from an Appliance to Another?
in RSA NetWitness Platform
Lee Kirkpatrick
Click to view contentI have recently been posting a number of blogs regarding the usage of the RSA NeWitness Platform to detect attackers within your environment. As the list of the blogs grow, it is becoming increasingly difficult to navigate through them easily. In order to combat this, this blog post will contain references to all other blog posts in the Profiling… (Show more)
in RSA NetWitness Platform
Marco Faggian
Click to view contentWireGuard is a new open-source VPN protocol used to create point to point tunnels. It uses the most modern cryptographic protocols and it works on the network layer for both IPv4 and IPv6. One of the advantages of WireGuard implementation is the size of it's code. It uses just 4000 rows of code, which is much smaller compared with openVPN or IPsec… (Show more)
in RSA NetWitness Platform
Adi Shraga
Hi There, Right-Clicking on an IP address allowing me to choose the option of "External lookup". I would like to add/remove some of the engines listed in there. do I have the option to do so? some of them lead to non-relevant links. Shani Amytai
in RSA NetWitness Platform
Lee Kirkpatrick
Click to view contentIntroductionLateral movement is a technique that enables an adversary to access and control remote systems on a network. It is a critical phase in any attack, and understanding the methods that can be used to perform lateral movement, along with how those protocols display themselves in NetWitness, is paramount in detecting attackers moving… (Show more)
in RSA NetWitness Platform
Load more items