We use Splunk Enterprise Security and its machine learning.
Current work environment is not using it.
We're not really using this just yet
+1
Splunk and UiPath
Dell secureworks is our vendor and we are not thrilled with them at all
Not using machine learning.
using AI to do repetitive tasks.
Not at all
IDS and SIEM
I wish we were. No resource for it right now.
No, we're trying not to encourage SkyNet
nice
Cisco ASR Devices.pollerCisco ASR Devices
SWQL is built on the framework of SQL and as such supports most of the standard clauses as part of a query. A very simple example query is: SELECT Caption, IPAddress, Vendor, ResponseTime FROM Orion.Nodes Dissecting this query is relatively straightforward: show some fields (Caption, IP address, Vendor, and Response Time)…
Active SSL Tunnels-ASA.UnDPThis poller *should* display the number of Active SSL VPN (Anyconnect) Tunnels currently connected to your box. However, I tried it with my 5520 running 8.0.4 and for some reason I get a OID Not Supported. Here's my post in the forum: *EDIT* This is confirmed working with at least Interm release…
HP ProCurve Switches Hardening check.xmlGeneral hardening for HP switches
