good day, please advise on what data source configuration guide should I refer to add KFsensor (built in Windows Server) and Snort Server (built in Linux) in the ESM?
Moved to SIEM forum for a better chance of an answer
SIEM collector to tail KFsensor and syslog log foward for snort.
Thanks sssyyy that really helps. Appreciate your help.