RSA NetWitness Platform Using the REST API

Document created by Elena Komarova Employee on Jan 23, 2017Last modified by Joseph Cantor on Dec 10, 2019
Version 19Show Document
  • View in full screen mode

On-Demand Lab Details

Register

 

 

In order to register for a class, you need to first create a Dell Education account

If you need further assistance, contact us

 

Summary

Learn about RSA NetWitnessⓇ Platform's implementation of the REST API and how it provides you with access to the proprietary backend, thus enabling you to automate administrative tasks, extract data programmatically, and more. It includes a lab environment in which you will practice your new skills.

.

 

Overview

This course enables you to access key metrics, controls, and metadata within RSA NetWitness Platform using the command line or scripting. It begins by reviewing how RSA has implemented the REST API and reasons for its use.  Demonstration videos walk through REST command syntax and various use cases for the technique. The course also provides sample scripts you can extend for your own use.  Lab exercises walk you through "real life" examples of REST API's use and give you the foundation to automate business processes of your own. This OnDemand lab includes modules of lessons, video demonstrations and virtual lab exercises.

 

Audience

Security analysts, content developers, and administrators

 

Delivery Type

On-Demand Lab

 

Duration

3-4 hours

 

Accessing the Lab Environment

Lab exercises are performed in the RSA University virtual lab environment. The downloadable Lab Guide provides detailed instructions on access the environment. For more information please view the document Access RSA University Virtual Labs – available on the RSA University site: RSA University Content

 

Prerequisite Knowledge/Skills

Students should have completed the following training (or have equivalent knowledge) prior to taking this training:

  • Students must have some understanding of the architecture as well as admin and analyst functionality of RSA NetWitnessⓇ Platform.
  • Scripting and command line experience is also helpful.

 

Learning Objectives

Upon successful completion of this course, participants should be able to:

  • Describe the NetWitness REST (or RESTful) API and its typical uses
  • Access and pull key metrics using the REST API GUI
  • Construct REST command syntax, including URL of NetWitness services
  • Describe how the REST API can set configurations and gather analysis data
  • Enable the Ember interface

 

Course Outline

  • What is a RESTful API?

  • NetWitness RESTful API Basics

  • Two Interfaces Available

  • Command Syntax

  • Stats Basics

  • Typical Use Cases

  • Demonstration: Gathering Statistics

  • Demonstration: Explore Capability

  • Demonstration: Intro to Scripting

  • Demonstration: curl and Perl

  • Demonstration: Python and GET

  • Configuration Consistency Use Case

  • Security

  • Analyst's Perspective Use Case

  • Virtual Lab Activities Interest with REST

 

 

 

 

 

On-Demand Lab Details

Register

 

 

In order to register for a class, you need to first create a Dell Education account

If you need further assistance, contact us

1 person found this helpful

Attachments

    Outcomes