forked from KC7-Foundation/kc7_data
-
Notifications
You must be signed in to change notification settings - Fork 0
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
Showing
1 changed file
with
23 additions
and
18 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -29,48 +29,53 @@ A few things you’ll need to do first: | |
|
|
||
| 1. Request a Synapse Enterprise demo instance at: [https://vertex.link/request-a-demo](https://vertex.link/request-a-demo). You’ll then receive an email from `Optic <[email protected]>` with a link to create a password and log in to your demo instance. | ||
|
|
||
| 2. Once you’ve logged in, check the green **Top Bar** to verify that you are in the **Research Tool** (you should see "Research" in the left hand corner). Next, use the **Workspace Selector** dropdown menu in the Top Bar to change from "default" to the *KC7 Workspace*. Once you’ve done that, use the **View Selector** to select the *KC7-EnvolveLabs View* from the dropdown menu. This is where the data for today’s exercise lives. The Top Bar of your UI should now look like this: | ||
| 2. Once you’ve logged in, check the green **Top Bar** to verify that you are in the **Research Tool** (you should see "Research" in the left hand corner). | ||
|
|
||
|  | ||
|  | ||
|
|
||
| 3. Now, we’re going to create a scratchspace to work out of. To do this, click the **Fork** icon to the right of the **View Selector**: | ||
| 4. Next, use the **Workspace Selector** dropdown menu in the Top Bar to change from "default" to the *KC7 Workspace*. | ||
|
|
||
|  | ||
|  | ||
|
|
||
| This will open a pop-up window where you can name your "scratchspace" then click **Fork** to create it. You’ll see the name of your scratchspace replace the *KC7-EnvolveLabs* view in the Top Bar. | ||
| 5. Use the **View Selector** to select the *KC7-EnvolveLabs View* from the dropdown menu. This is where the data for today’s exercise lives. | ||
|
|
||
| 4. After selecting the KC7 Workspace, move to the dropdown menu to the right of the **Workspace Selector**. This is called the **View Selector**. Next, select the _KC7-EnvolveLabs_ View. This is where the data for today’s exercise lives. The Top Bar of your UI should now look like this: | ||
|  | ||
|
|
||
|  | ||
| 6. Now, create a scratchspace to work out of by clicking the **Fork** icon to the right of the **View Selector**: | ||
|
|
||
| 6. Next, we’re going to create a scratchspace to work out of. To do this, click the **Fork** icon to the right of the **View Selector**: | ||
|  | ||
|  | ||
|
|
||
| 7. This will open a pop-up window where you can name your "scratchspace" then click **Fork** to create it. | ||
|
|
||
| This will give you a pop-up window where you can name your “scratchspace”, then click **Fork** to create it. You’ll see the name of your scratchspace replace the _KC7-EnvolveLabs_ View in the Top Bar. | ||
|  | ||
|
|
||
| 7. Double check that the **Query Bar**, shown below, is set to Storm mode: | ||
| You’ll see the name of your scratchspace replace the *KC7-EnvolveLabs* view in the Top Bar: | ||
|
|
||
|  | ||
|
|
||
| 8. Now that you've set the Workspace and view, double check that the **Query Bar**, shown below, is set to Storm mode: | ||
|
|
||
|  | ||
|
|
||
| We’ll be using this **Query Bar** to run our queries for today’s exercises. | ||
| You’ll be using this **Query Bar** to run our queries for today’s exercises. | ||
|
|
||
| 8. Use the Tool Bar on the left of the UI, navigate to the **Power-Ups Tool** by clicking on the lightning bolt icon, then search for the *Synapse-Alienvault* Power-Up under the *Available* tab and click the **Add** button to install it on your Synapse instance: | ||
| 9. Now you need to install a Power-Up. Use the Tool Bar on the left of the UI, navigate to the **Power-Ups Tool** by clicking on the lightning bolt icon, then search for the *Synapse-Alienvault* Power-Up under the *Available* tab and click the **Add** button to install it on your Synapse instance: | ||
|
|
||
|  | ||
| <br> | ||
|
|
||
| 9. Once you’ve installed the Power-Up, use the Tool Bar on the left to navigate to the **Console Tool** by clicking on the icon, shown below: | ||
| 10. Once you’ve installed the Power-Up, you'll need to set your AlienVault API key (you can sign up for a free key here: https://otx.alienvault.com/). Use the Tool Bar on the left to navigate to the **Console Tool** by clicking on the icon, shown below: | ||
|
|
||
| <img width="238" alt="image" src="https://github.com/KC7-Foundation/kc7_data/assets/9474932/9c46b2a2-6ffc-4266-97b1-9deeffcb9c7a"> | ||
|
|
||
| 10. Type the following command into the **Query Bar** and hit Enter to set your Alienvault API key: | ||
| 11. Type the following command into the **Query Bar** and hit Enter to set your Alienvault API key: | ||
|
|
||
| ```js | ||
| alienvault.setup.apikey <apikey> | ||
| ``` | ||
|
|
||
| Once you’ve done that, use the magnifying glass icon at the top of the left-hand toolbar to return to the **Research Tool**. | ||
| 10. Once you’ve done that, use the magnifying glass icon at the top of the left-hand toolbar to return to the **Research Tool**. | ||
|
|
||
|  | ||
|
|
||
| <br> | ||
|
|
||
|
|
||