Cisco AMP (Advanced Malware Protection) is an EDR designed to prevent, detect, and help remove threats from computer systems.

Sending Data to Hunters

Hunters supports integration of Cisco AMP’s event-stream.

To integrate Cisco AMP into Hunters, create a new event-stream (AMQP messaging resource for events) using this guide by Cisco, and provide hunters with the host, user_name, password, queue received.