/
Albert NetFlow Extract Tool (ANET)

Albert NetFlow Extract Tool (ANET)

Owned by Doug McLean
Last updated: Feb 20, 2025
1 min read

The Albert Netflow Extract Tool (ANET) is a reporting feature of Albert which is available in the CIS Portal. ANET allows members to query their Albert data in a self-serve way without having to engage the CIS SOC and wait for a response. ANET Supports several common IP and DHCP based queries.

Members can save time and effort by running their own queries against Albert data which cover some of the most common query types. Members will no longer have to contact the MS-ISAC SOC for these queries and get timely results.

  • Queries are limited based on a query credit system. Members receive 32 credits per sensor, per month to start. If you exceed your credit limit you can request additional credits via the SOC. Queries range from 1 to 8 credits depending on complexity and relative size of the data set being queried. Query Costs will be displayed in the UI when a query type is selected.

  • The ability to purchase additional credits in either a self-serve way, or via an RFP will be introduced in the near future.

  • Result times vary based on query, but generally same day for queries issued before 8pm.

  • Queries are limited to 7 days of data, but multiple queries can be used to cover longer durations of time. This is done to keep query return times and costs down.

  • Additional Query types will be added to ANET based on member feedback and utility.