KNOWLEDGE BASE
Visit dnif.it
Go to Customer Portal
SECURITY MONITORING
START YOUR TRIAL
CONNECTORS
Supported connectors
ANALYZE IN STYLE
PIPES
FUNCTIONS
DQL (LEGACY)
DATA INGESTION
EXTRACTORS
ENRICHMENT
ENRICHMENT EXAMPLES
BILLING
SECURITY MONITORING
INVESTIGATE SIGNALS
MANAGING CASES
OPERATIONS
MANAGE DASHBOARDS
MANAGE REPORTS
HUNTING WITH WORKBOOKS
VISUALIZATION
DEVICE INTEGRATION
CISCO
FORTINET
MICROSOFT
SYMANTEC
MANAGE USERS AND ACCESS
MANAGING YOUR COMPONENTS
PICO
GETTING STARTED
INSTALLATION
SOLUTION DESIGN
AUTOMATION
SUPPORTED AUTOMATION
SUPPORTED AUTOMATION - SSH
TROUBLESHOOTING AND DEBUGGING
TROUBLESHOOTING CONNECTORS
LICENSE MANAGEMENT
RELEASE NOTES
API
POLICIES
SECURITY BULLETINS
Back to home
KNOWLEDGE BASE
SECURITY MONITORING
START YOUR TRIAL
CONNECTORS
Supported connectors
ANALYZE IN STYLE
PIPES
FUNCTIONS
DQL (LEGACY)
DATA INGESTION
EXTRACTORS
ENRICHMENT
ENRICHMENT EXAMPLES
BILLING
SECURITY MONITORING
INVESTIGATE SIGNALS
MANAGING CASES
OPERATIONS
MANAGE DASHBOARDS
MANAGE REPORTS
HUNTING WITH WORKBOOKS
VISUALIZATION
DEVICE INTEGRATION
CISCO
FORTINET
MICROSOFT
SYMANTEC
MANAGE USERS AND ACCESS
MANAGING YOUR COMPONENTS
PICO
GETTING STARTED
INSTALLATION
SOLUTION DESIGN
AUTOMATION
SUPPORTED AUTOMATION
SUPPORTED AUTOMATION - SSH
TROUBLESHOOTING AND DEBUGGING
TROUBLESHOOTING CONNECTORS
LICENSE MANAGEMENT
RELEASE NOTES
API
POLICIES
SECURITY BULLETINS
SECURITY MONITORING
Best practices to use the platform for active threat monitoring.
What is security monitoring?
Mitre Att&ck® and DNIF
MITRE ATT&CK® Usage
Streams and MITRE ATT&CK®
Why EBA
Signal Suppression Rule
Creating Signal Suppression Rules
INVESTIGATE SIGNALS
How to add a signal to a case?
False Positives
Add Multiple Signals to a Case
What are signals?
Suspect & Target
View Signal Context Details
Signal Context Details
Raise and View Signals
Global Signals
Source Stream
Signal Confidence Levels
Signal Filters
Investigate Anywhere
Graph View for Signals
See more
MANAGING CASES
What is Case Management?
View Cases
Filter Cases
How to create a new case?
Kill Chain Model
See more