Example - Universal Payload Analysis for DCE/RPC

bundle

#1

###Bundle details and download
https://www.extrahop.com/bundles/ryanc/example-universal-payload-analysis-dce-rpc/

###Description
One of the key new features in ExtraHop v4.0 is Universal Payload Analysis – with this advanced feature, we now have the ability to understand previously unsupported protocols. New methods and events introduced into the Application Inspection Triggers grants you access to TCP and UDP payloads and enables the ability to parse those payloads. For more information on this feature, read the Universal Payload Analysis datasheet.

This bundle is an example of using Universal Payload Analysis to parse the DCE/RPC protocol, store metrics for the activity, and chart that activity over time.