How to integrate Kaspersky Threat Data Feeds with McAfee ESM

Latest update: September 22, 2022 ID: 13857
 
 
 
 

Kaspersky CyberTrace is an application set that allows you to check URLs, file hashes, and IP addresses contained in events that arrive in McAfee ESM. The URLs, file hashes, and IP addresses are checked against Threat Data Feeds from Kaspersky Lab, and their categories and actionable context are determined in the process.

To install the SIEM connector for McAfee ESM:

  1. Download Kaspersky CyberTrace. Find the download links in this article.
  2. Follow the instructions in the product documentation to install the package.

Please note that the SIEM connector for McAfee ESM was tested with McAfee ESM 9.6 and 10.

 
 
 
 
 
Did you find what you were searching for?
Thank you for your feedback!