Vectra Threat Detection and Response Platform data source specifications

When you configure a Vectra Threat Detection and Response Platform data source, understanding the specifications of the data source type can help ensure a successful integration. For example, knowing the supported version of Vectra Threat Detection and Response Platform before you begin can help reduce frustration during the configuration process.

The following table describes the specifications for the Vectra Threat Detection and Response Platform data source type.

Table 1. Vectra Threat Detection and Response data source type specifications
Specification Value
Manufacturer Vectra
Data source type name Vectra Threat Detection and Response Platform
Data source type bundle file name VectraThreatDetectionandResponsePlatform
Supported version V2.5
Connector Universal Cloud REST API
Event format JSON
Recorded event types Detections: Command & Control, Botnet, Reconnaissance, Lateral Movement, Exfiltration, Info
Automatically discovered? Yes
Includes identity? No
Includes custom properties? No
More information Vectra Networks (http://www.vectranetworks.com)