Gravwell is an enterprise data fusion platform that enables security teams to investigate, collaborate, and analyze data from any source, on demand, all with unlimited data collection and retention. Ingest everything. Investigate anything.
This kit provides ready-to-roll dashboards, queries, templates, playbooks, and actionables.
The Netflow v5 kit depends on the Gravwell Netflow Ingester and makes heavy use of the netflow search module.