~quantum-veritas
What types of data can be posted to the Ingestion API?
What is the search component used for extremely fast results on asset, domain, IP, User, and file/hash results?
What are the supported formats when using the ingestion API?
What are the mandatory checks required for installing a Use Case?
In Command Center, when creating a new status assessment, can you add a severity above 100?
What collection method can be used to send data directly to Chronicle?
What are the different data sources that a Chronicle Forwarder can have connectors for?
What is the recommended starting point for investigating threats in Chronicle?
What are the major benefits of Chronicle?
What section of a detection rule describes the events that must match?
What is the search component used to search for non-indexed data?
What is UDM Search used for?
What is the least privileged role in Chronicle?
