• Planned

    7

    Out of box Reports extraction Format

    At this time reports (out of box)can only be exported from the SIEM as PDF files. It would be great if we could get those reports in CSV format as well.

  • Votes

    5

    Permissions to Security Intelligence Boards

    Changing the permission structure: Now: Only access to all events for a user and permissions to SI boards are possible. If you limit the event view with a filter you ...

  • Votes

    18

    View single raw data event in the WebUI

    Sometimes I miss the ability to quickly preview a single raw data (event) related to the event I want to check. Customers are asking for this too.

  • Votes

    10

    make searching for "lateral movement" easier in the WebUI

    I really like the feature of being able clicking on fields to add a new criteria to the search query. When analyzing events, I often need to find similar events and do a ...

  • Votes

    9

    pseudonymization of user identifiers

    Data privacy laws and regulations in certain areas prohibit the use of subject’s real names or identifiers which can easily be attributed to a subject (e.g. account names ...

  • Votes

    3

    CG reports (.csv) should print events line by line without any report ...

    When the CG reports are generated, the output of the report with the selected events will be displayed in the proper report specific format. Whereas, when the events ...

  • Votes

    3

    Generating Security Intelligence Graph with Custom Field for Y-axis

    Currently Sentinel able to generates security intelligence graph using event per seconds as Y-axis. Suggest to enable graph generating with custom integer as Y-axis (as ...

  • Votes

    2

    exclude results in sentinel through the fields area

    it would be great if you could exclude results with a check mark in the refine fields area. instead of selecting what you want to see, you need to have the ability to ...

  • Votes

    4

    Alphabetical ordering of actions in action manager

    it is sometimes difficult to find an action in Action manager. could be interesting to order alphabeticaly

  • Votes

    4

    Add ability to customize Sentinel report format

    When reports are generated in Sentinel, you do not have a choice of how the report is formatted. For example, customer wants to display data in a bar graph format versus ...

  • Votes

    3

    Disable dashboard

    It would be great to disable the dashboard or have an automated forward to the main interface. Nobody of us is using the dashboard, its always an additional click which ...

  • Votes

    5

    allow additional links to be added to app navigation bar

    The left nav bar in the Sentinel app currently has links for home, main, search and (at the bottom) security health. This leaves a lot of room that could be used to add ...

  • Votes

    2

    Manage alerts from multiple sentinel deployment using single ...

    In the client's environment, they have multiple Sentinel deployments (Prod, Test, DMZ etc) Each of the environments have their own alerts that they can investigate and ...

  • Votes

    7

    Configurable Alarm View

    there is only a non-configurable Alarm view. It would be great to have it configurabel to have other/more table rows. e.g. in the Alarm View list it would very helpful ...

  • Votes

    5

    Dashboard / Visualization from other Sentine Server

    I need an option to use the Data Federation not only on searches and Reports, but also on Dashboards and Visualization. This is very important for scalability issues to ...

  • Votes

    1

    Allow to comment on each event in an alert separately

    In some cases to differentiate events that are attached to an alert analysts have to document some information for each event separately (i.e. each event having different ...