ICDx

 View Only

 Is there a specific collector for SESC (Symantec Endpoint Security Complete)

Laercio Benedito Sivali De Sousa - ETIR's profile image
Laercio Benedito Sivali De Sousa - ETIR posted Jul 25, 2022 03:55 PM
I've just set up an ICDx 1.4.5 server for collecting my SESC logs end forwarding them to our SIEM. However, although there's some SESC-related file structure under ICDx installation folder, I'm unable to find an specific entry for SESC under collectors list.

May it be a preview feature which will be available in a next release of ICDx? Is there some way to enable SESC collector right now? If not, should I use the current ICDm / ICDm-EDR-Incidents collectors?