Videocast
Building Correlation Rules for Behavioral Analysis
Tripwire Log Center provides you with built-in security content in the form of correlation rules. These out-of-the-box rules can help you identify the high priority items out of a sea of log data. In this video you will learn how to:
- Use the highly visual drag-n-drop rule builder to easily create and modify correlation content
- Create behavioral rules leveraging various criteria to detect most common types of attacks
- Modify the existing pre-built rules to customize based on your IT environment to provide tuned-in incident detection
- Create alerts to ensure the right people know about issues before they become problems, as well as disabling accounts all from a simple interface.
- Reduce the breach to detection gap and be able to act faster in the event of a compromise to your security system
Related Tripwire Resources You Might Be Interested In:
- 10 Steps to Better Security Incident Detection Watch
- 10 Steps for Early Incident Detection Read
- Reporting Capabilities for Compliance and Security Watch
- Trending Analysis of Log Events Watch
- Creating Operational Dashboards for Visibility Watch
- Detecting High Priority Incidents for Threat Response Watch
- A Pragmatic Approach to SIEM: Buy for Compliance, Use for Security Read
- Pulling the Plug on Legacy Log Management Read
Sign In
to register for this Videocast