Wider attack surface coverage powered by hundreds of integrations and deeper threat visibility powered by thousands of detections.
Version : DarkTrace IDS V3.0.10 and above Version
DarkTrace Intrusion Detection System (IDS) is a device or software application that monitors a network or systems for malicious activity or policy violations. Any malicious activity or violation is typically reported to an administrator.
DarkTrace IDS can be integrated with Netsurion's Open XDR platform using Syslog. With the help of DarkTrace IDS KP items, we can monitor the intrusion happening inside the network and also trigger the alert whenever any high server intrusion is detected. Netsurion's Open XDR platform dashboard will help you to visualize the intrusion happening inside the network by it’s source IP address as well as based on categories. It can even create the report which helps to collect intrusion happening on the network on time bases, which helps you to review the intrusion. Netsurion CIM will help you to correlate the intrusion with other log sources like firewall, OS events, etc.
Netsurion Data Source Integrations for DarkTrace IDS allows you to monitor the following components:
Once DarkTrace IDS is configured to deliver events to Netsurion manager; knowledge objects and reports can be configured into Netsurion.
Some of the Data Source Integrations available in Netsurion are listed below.
Download Integration Guide for more information and to configuration instructions.