-
Before installing your Director, we've provided a checklist that covers prerequisites. This way, you are positive you've made all the required decisions and captured the required information before you start the installation. Installation Workflo...
-
Apache Lucene is the accepted standard in the text searching technology space and is relatively well known. On the surface, the syntax looks simple, but using it correctly often requires careful consideration.
Lucene queries are used in in...
-
Last Updated: 08/22/2022
in Threat Intelligence Beyond Mandiant Intelligence Subscriptions Purchasing a Mandiant Advantage Intelligence subscription gives you world-leading intelligence at your fingertips. Maximizing this intelligence requires clear processes and effective application. Our ...
-
This document describes how determines the severity ratings for Issues.
Confidence Level of Issues
uses triage categories to determine whether an Issue needs further investigation or is ready for review.
Confirmed : has high ...
-
An Entity is an external asset belonging to an organization such as a domain name, email address, or URL. Every Entity that is found serves as a pivot point for additional data gathering. For a list of available Entities in , see Entity types . ...
-
Use this document to manage integrations using one of the following methods:
()
()
Integrations
This method is the preferred approach for configuring integrations in .
After you configure Direct and Remo...
-
This integration is not currently supported for AWS GovCloud (US) users.
To provide a more thorough view of your inventory, can integrate with Amazon Web Services (AWS) to retrieve the following:
Public EC2 instances
S3 buckets...
-
Installing the integration in the standard method doesn't always work because communication would be prevented by network boundary issues. In that case, you can configure a Remote Integration. Remote Integrations are integrations that are installe...
-
Threat Score is the evolution of IC Score, and it is the recommended default for assessing the impact of an Indicator. IC Score continues to be supported for backward compatibility. Indicator Threat Score is a measure of the likelihood that an...
-
This section describes the decisions you need to make before installing the Validation Platform Actor. The following topics are included: Choosing an Installation Method Handling Software Dependencies Addressing Access Controls Choos...