AnsweredAssumed Answered

Beacons to

Question asked by Richard van den Berg on Jul 3, 2020
Latest reply on Jul 6, 2020 by Richard van den Berg

I just upgraded our servers to NetWitness and noticed almost every page sends beacons to[cut] 


Did NetWitness always do this? Is this new in

What annoys me most about this is the referer header gives away our NetWitness URL including possible sensitive path (we use deep linking to the investigate module from other applications):

User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:68.0) Gecko/20100101 Firefox/68.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://netwitness.local/admin/services/139/security
Connection: keep-alive