Support and News Forum


https://www.eve-ng.net/forum/

Stealthwatch and SIEM

https://www.eve-ng.net/forum/viewtopic.php?f=7&t=3765

Page 1 of 1

Stealthwatch and SIEM

Posted: Tue Jun 05, 2018 7:54 pm
by matth
Is there any way we can add the following support to the release(s)
- Cisco Content Security Management Appliance (SMA) [for managing the WSAs and ESAs]
- Cisco Stealthwatch Flow Collector Virtual
- Cisco Stealthwatch Management Console Virtual
- Cisco Stealthwatch Flow Sensor Virtual
- Cisco Stealthwatch UDP Director Virtual

And maybe SIEM support:
- IBM QRadar Security Intelligence Platform
- Archsight
- Splunk

Re: Stealthwatch and SIEM

Posted: Wed Jun 06, 2018 1:23 pm
by Uldis (UD)
I will answer more yes than no..
but after we will get in custom template
any can make own image to add in eve..

Stealthwatch has problem to test until no lic it will not work as I know....
forecast of custom templates is end of this summer

UD

Re: Stealthwatch and SIEM

Posted: Wed Apr 15, 2020 4:25 am
by ps161h@gmail.com
Hello, I am able to load the Stelthwatch image on EVEnG community, unable to call the device from the node, Selthwatch option is not available, kindly advice.

Option Cisco StealthWatch is missing in the lab.

Reg
prasanth S

Re: Stealthwatch and SIEM

Posted: Wed Apr 15, 2020 6:24 am
by Uldis (UD)
You must read EVE Cookbook,
For community section 12.3
https://www.eve-ng.net/index.php/docume ... -cookbook/

By the way EVE Community v 2.0.3-108 has included Stealthwatch templates..
All times are UTC
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Limited
https://www.phpbb.com/