This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Log in to ask a question

How to write a use cases for any network devices

Posted on 03-20-2024 04:03 AM
muniraja1
Bronze 1
Bronze 1
Reply posted on --/--/---- --:-- AM

Hi All,

Please help us, how to write the use cases for Network devices in SIEM.

Please share with me if have any example use cases format and we are not ware up on how to write the use cases.

thanks!

Solved Solved
0 2 86
Topic Labels
Jump to Solution
0 Likes
1 ACCEPTED SOLUTION

Posted on --/--/---- --:-- AM
muniraja1
Bronze 1
Bronze 1
In response to jstoner
Reply posted on --/--/---- --:-- AM

Thanks for the sharing links, now got it, how to write the use cases.

View solution in original post

Jump to Solution
2 REPLIES 2

Posted on --/--/---- --:-- AM
jstoner
Staff
Reply posted on --/--/---- --:-- AM

This is extremely broad and I'm not certain where you are looking to start. I would point out that @tameri posted a nice reference on using Zeek with search last week https://www.googlecloudcommunity.com/gc/SIEM-Forum/Chronicle-Search-Zeek-A-Quick-Reference/m-p/72355... and we maintain a community rule set https://github.com/chronicle/detection-rules that contains examples that could be used as a starting point.

Jump to Solution
0 Likes

Posted on --/--/---- --:-- AM
muniraja1
Bronze 1
Bronze 1
In response to jstoner
Reply posted on --/--/---- --:-- AM

Thanks for the sharing links, now got it, how to write the use cases.

Jump to Solution
Top Solution Authors
View all