RSA NetWitness Logs and Packets decoders are responsible for the real-time collection of network data. The decode captures data in real time and can normalize and reconstruct data for full session analysis. In addition, the decoder can collect flow and endpoint data.
RSA NetWitness Packets and Logs provides visibility of data related to packets and logs residing on Netwitness. The pack can provide crucial information by filtering through logs/packets on Netwitness and provide analysts with insights to potential threats.
What does this pack do?
- Filter logs/packets based on sessions.
- Stream packets based on sessions.
- Perform value count query basd on field names.
- Retrieve meta values for multiple sessions.
- Filter logs and packets based on pattern matches.
Note: Support for this Pack moved to the partner on 04, 21, 2024.
Please contact the partner directly via the support link on the right.
RSA NetWitness Packets and Logs provides visibility of data related to packets and logs residing on Netwitness. The pack can provide crucial information by filtering through logs/packets on Netwitness and provide analysts with insights to potential threats.
What does this pack do?
- Filter logs/packets based on sessions.
- Stream packets based on sessions.
- Perform value count query basd on field names.
- Retrieve meta values for multiple sessions.
- Filter logs and packets based on pattern matches.
Note: Support for this Pack moved to the partner on 04, 21, 2024.
Please contact the partner directly via the support link on the right.
