Forum Discussion
Solved
MDATP Full Telemetry Ingestion
I noticed from a previous post (way back in September) that the MDATP streaming api was being assessed for possible integration with Sentinel. Is there any update to the possibility of this happenin...
I'm Ely from the product group.
Getting MDATP data to Sentinel is indeed part of our roadmap and planned for the next few month
Thanks,
Thijs Lecomte I understand that it would potentially be quite expensive, and it certainly wouldn't be meant for everyone. I have seen the use of the CrowdStrike Data Replicator API with Splunk, and Red Canary has done fantastic work with Carbon Black data on the Splunk platform as well. It would be nice to have the ability to have MTP type cross product investigative/fusion capabilities within Sentinel with MDATP data.
I'm Ely from the product group.
Getting MDATP data to Sentinel is indeed part of our roadmap and planned for the next few month
Thanks,