Support statement for custom rules with SIEM
Last Modified: 2022-04-21 06:41:16 Etc/GMT
Languages:
This article is available in the following languages:
Trellix CEO, Bryan Palma, explains the critical need for security that’s always learning.
As per Gartner, "XDR is an emerging technology that can offer improved threat prevention, detection and response."
Trellix announced the establishment of the Trellix Advanced Research Center to advance global threat intelligence.
Trellix Advanced Research Center analyzes threat data on ransomware, nation-states, sectors, vectors, LotL, MITRE ATT&CK techniques, and emails.
As of May 14, 2024, Knowledge Base (KB) articles will only be published and updated in our new Trellix Thrive Knowledge space.
Log in to the Thrive Portal using your OKTA credentials and start searching the new space. Legacy KB IDs are indexed and you will be able to find them easily just by typing the legacy KB ID.
Support statement for custom rules with SIEM
Technical Articles ID:
KB84428
Last Modified: 2022-04-21 06:41:16 Etc/GMT Environment
SIEM Enterprise Security Manager (ESM) 11.x SummaryTechnical Support doesn't support custom rules with our SIEM products. Customers who develop their own custom parsers assume all responsibility for future troubleshooting and updating.
If custom rules have adversely affected your SIEM installation or normal SIEM operations, or if you suspect they have, Technical Support recommends that you remove or disable those parsers.
Assistance with writing custom rules is available through our Professional Services. For further details, contact your sales representative.
Product/Parser Enhancement To submit a new product idea, go to the Enterprise Customer Product Ideas page.
Click Sign In and enter your ServicePortal User ID and password. If you do not yet have a ServicePortal or Community account, click Register to register for a new account on either website. For more information about product ideas, see KB60021 - How to submit a Product Idea. Languages:This article is available in the following languages: |
|