Vectra Threat Detection and Response Platform data source specifications
When you configure a Vectra Threat Detection and Response Platform data source, understanding the specifications of the data source type can help ensure a successful integration. For example, knowing the supported version of Vectra Threat Detection and Response Platform before you begin can help reduce frustration during the configuration process.
The following table describes the specifications for the Vectra Threat Detection and Response Platform data source type.
Specification | Value |
---|---|
Manufacturer | Vectra |
Data source type name | Vectra Threat Detection and Response Platform |
Data source type bundle file name | VectraThreatDetectionandResponsePlatform |
Supported version | V2.5 |
Connector | Universal Cloud REST API |
Event format | JSON |
Recorded event types | Detections: Command & Control, Botnet, Reconnaissance, Lateral Movement, Exfiltration, Info |
Automatically discovered? | Yes |
Includes identity? | No |
Includes custom properties? | No |
More information | Vectra Networks (http://www.vectranetworks.com) |