How to integrate Kaspersky Threat Data Feeds with LogRhythm

Latest update: December 12, 2022 ID: 15720

Kaspersky CyberTrace allows you to check URLs, file hashes, and IP addresses contained in events that arrive in LogRhythm. The URLs, file hashes, and IP addresses are checked against threat data feeds from Kaspersky or from other vendors or sources loaded to CyberTrace. During the matching process, Kaspersky CyberTrace determines the indicator category and generates an event supplemented with actionable context.

To install the SIEM connector for LogRhythm:

  • Download Kaspersky CyberTrace. Find the download files for Kaspersky CyberTrace in this article.
  • Follow the instructions from Online Help to configure LogRhythm.
Did you find what you were searching for?
Thank you for your feedback!