Devo Documentation is a live repository of information, how-to’s, troubleshooting guides, and installation instructions for every part of Devo solutions. It is a large repository of information with many moving parts and authors and it gets updated daily. These articles will help highlight some of the key updates that provide the most impact or improvements to your existing workflow. The highlight of these updates is rebuilt documentation for a variety of SQS collectors and JSON pages. If you have any questions or suggestions for our documentation team, post them in the comments below!
In March, we updated 177 Articles!
Here are some highlights
Table of Contents
Data Search
Best practice for data search
This handy article collects all the useful tips and best workflows from across Devo to enhance your Data Search practical knowhow.
Data Search Error Codes
A complete list of error codes and their meaning. Very handy!
Collectors
Microsoft Azure Events Hub Collector
Are you feeling overwhelmed by the 80 line configuration file for the Azure Event Hub collector? If you use the example from the public documentation, they only need to fill out five fields in a 20 line file, and there's a graphic that will guide them.
Use the Azure Event Hub collector for authentication data to avoid API delays and limits. Customers should still use the Graph collector to get intelligence about the authentication data.
Microsoft Graph Collector
One of Devo’s top 5 collectors. Customers should use it to import Microsoft's security intelligence into Devo. Customers should upgrade to 3.2.0 using the migration guide. Instructions were simplified, no longer do you need redirect URI’s
Wiz Collector
The Devo Wiz collector allows customers to retrieve Wiz cloud security issues into Devo to query, correlate, analyze, and visualize to enable Enterprise IT and Cybersecurity teams to take the most impactful decisions at the petabyte scale.
CroudStrike Intelligence Collector
Use this to detect when a rootkit tries to tamper with Crowdstrike sensors.
Entra ID collector (Formerly Azure Active Directory)
Entra ID data is critical to detecting authentication threats for those customers who use it to manage a authentications in all their apps. Customers can export Microsoft's AI-based risk analysis to Devo and use it to find threats in their non-Microsoft data sources.
Microsoft 365 Management API Collector
This updated documentation simplifies the enablement process in addition to providing useful use cases and troubleshooting tips to secure their data.