Nextron Systems - Analysis Cockpit v4
Welcome to Nextron System's Manual for the ASGARD Analysis Cockpit v4.
Note
If you are still using an older version of the Analysis Cockpit, please click here to see the older version of the documentation.
Analysis Cockpit is the central platform for analyzing THOR events and SIGMA matches generated by ASGARDs real time agents.
It can be used in an environment where scans results can be automatically collected from ASGARD Management Centers or environments in which THOR is executed by scripts or any other 3rd party solution.
In the following chapters we will describe how the Analysis Cockpit works, how to install the system, and how to use it. Additional information regarding troubleshooting, known issues, or general administrative tasks can also be found.
- 1. Requirements
- 2. Setup Guide
- 3. Administration
- 4. Basic Concepts
- 5. Baselining
- 6. Case Management Best Practices
- 7. Maintenance
- 8. Typical Pitfalls
- 9. FAQs
- 9.1. Disabling Assignment Logs
- 9.2. No Events visible
- 9.3. No new Events in Case
- 9.4. Location of Scan Logs
- 9.5. Default password for file downloads
- 9.6. Disk Space filling up quickly
- 9.7. Reverse Proxy to access the Analysis Cockpit
- 9.8. Internet Explorer
- 9.9. Admin Password reset
- 9.10. Multi Factor Authentication reset
- 9.11. Resetting TLS/SSL Certificates
- 10. Known Issues
- 11. Upgrade from Cockpit v3.10.4 to Cockpit v4.x
- 12. Glossary
- 13. Changelog