After investigation and reading many documents about Cisco Secure Network Analytics (Formerly Stealthwatch), I share with the community useful resources for learning.
- Security Analytics with Stealthwatch – Cisco Live BRKSEC-3014: https://www.ciscolive.com/c/dam/r/ciscolive/emea/docs/2020/pdf/BRKSEC-3014.pdf
- Visibility, Detection and Response with Cisco Secure Network Analytics – Cisco Live BRKSEC-3019: https://www.ciscolive.com/c/dam/r/ciscolive/emea/docs/2023/pdf/BRKSEC-3019.pdf
- Cisco Secure Network Analytics – Security Events and Alarm Categories 7.4.2: https://www.cisco.com/c/dam/en/us/td/docs/security/stealthwatch/management_console/securit_events_alarm_categories/7_4_2_Security_Events_and_Alarm_Categories_DV_2_1.pdf
- Cisco Secure Network Analytics Desktop Client User Guide 7.4: https://www.cisco.com/c/dam/en/us/td/docs/security/stealthwatch/management_console/smc_users_guide/7_4_Desktop_Client_User_Guide_DV_2_0.pdf
- Cisco Secure Network Analytics Global Threat Alerts Configuration Guide 7.4.2: https://www.cisco.com/c/dam/en/us/td/docs/security/stealthwatch/cta/configuration/SNA_7_4_2_Global_Threat_Alerts_Guide_DV_1_0.pdf
- Encrypted Traffic Analytics: https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/sec_data_eta/configuration/xe-16-8/sec-data-encrypted-traffic-analytics-xe-16-8-book/sec-data-encrypted-traffic-analytics-xe-16-6-book_chapter_01.pdf
- Cisco NetFlow Configuration: https://www.cisco.com/c/dam/en/us/td/docs/security/stealthwatch/netflow/Cisco_NetFlow_Configuration.pdf
- Configuring and Troubleshooting NetFlow for Cisco Stealthwatch: https://www.cisco.com/c/dam/en/us/td/docs/security/stealthwatch/netflow/config-trouble-netflow-stealth.pdf
- Cisco Secure Network Analytics ISE and ISE-PIC Configuration Guide 7.4.2: https://www.cisco.com/c/dam/en/us/td/docs/security/stealthwatch/ISE/7_4_2_ISE_Configuration_Guide_DV_1_0.pdf
- Cisco Secure Network Analytics Use Cases: https://community.cisco.com/t5/security-knowledge-base/welcome-to-secure-analytics-use-cases/tac-p/4418614#M7279
- ENCRYPTED TRAFFIC ANALYSIS Use Cases & Security Challenges: https://www.enisa.europa.eu/publications/encrypted-traffic-analysis
Demystify and Simplify 