What is product level mapping?

Forum|Forum|2 years ago
March 13, 2023
4 replies
3 views

+1

MUZAFFER_CIKAY
New Member

Hi guys, I dont understand what is product level mapping. Why it is needed? is the product information comes with events?

View files in slack

R

+9

recon_acook
New Member
Forum|Forum|2 years ago
March 14, 2023

Some connectors may report alerts from many different products. For example, you can send Cisco AMP and O365 alerts to your SIEM and use the ElasticSearch connector to ingest both types of alerts.

Like

M

+1

MUZAFFER_CIKAY
Author
New Member
Forum|Forum|2 years ago
March 14, 2023

So the product information is present in the incoming event?

Like

R

+9

recon_acook
New Member
Forum|Forum|2 years ago
March 14, 2023

In the case of the Cisco AMP connector, it looks like its hardcoded in its consts file

View files in slack

Like

M

+1

MUZAFFER_CIKAY
Author
New Member
Forum|Forum|2 years ago
March 14, 2023

Thank you

Like

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded