![]() ![]() In most cases, you’ll pivot to PCAP from a particular event in Alerts, Dashboards, or Hunt by choosing the PCAP action on the action menu.Īlternatively, you can go directly to the PCAP interface, click the blue + button, and then put in your search criteria to search for a particular stream. This interface allows you to access your full packet capture that was recorded by Stenographer. Security Onion Console (SOC) gives you access to our PCAP interface.
0 Comments
Leave a Reply. |