How to Use the EDR Activity Feed to Ingest Data into ESM/SIEM
Watch webinar discussion on what are the different types of events we can pull from EDR backend to various SIEM solutions. We will mainly cover step by step of ?Activity Feed integration? with Trellix SIEM and how the same can be use for any other SIEM integration. During the session we will go through how to automate activity feed using Docker and how to understand output.