• Have questions about this item?

  • Contact us

Description

The ArcSight Activate L1 - Application Monitoring Web Services - Indicators and Warnings package has been developed to detect anomalies and suspicious requests that are recorded in web server logs that may not be visible to other protective measures such as IDS/IPS and WAF due to the use of encrypted transport. In addition, the package provides a set of HTTP request methods and response code filters supported by the HTTP Protocol to monitor possible DoS HTTP flooding attacks, as well as identifies some suspicious XSS and SQL injection attacks. It also can provide indicators and warnings of potential security incidents at the application level, such as L1 Application Monitoring Web Applications or other packages.

The L1 Application Monitoring Web Services - Indicators and Warnings package has addressed the following use cases

  • HTTP Request/Response Suspicious Activity
  • Suspicious HTTP Request
  • Suspicious URL Pattern Detection

Minimum Requirements

Suggested apps

Suggested for you are based on app category, product compatibility, popularity, rating and newness. Some apps may not show based on entitlements. Learn more about entitlements.

Releases

Release
Size
Date
L1-Application_Monitoring_Web_Services_-_Indicators_and_Warnings_1.0.0.0.zip 1.0.0.0
29.4 KB
  |  
Oct 3, 2019
More info Less info
Product compatibility
OpenText Enterprise Security Manager
Version 6.8 · 6.11.0 · 6.9.1
Version 7.0 · 7.2 · 7.3 · 7.4 · 7.5 · 7.6 · 7.7 · 7.8
Release notes

Included new use cases to monitor web server logs:

  • Detected Linux File Inclusions
  • Detected Windows File Inclusions
  • Multiple HTTP 302 Redirect Requests

Now the package also supports MITRE Framework.

Languages
English
Files
L1-Application Monitoring Web Services- Indicators and Warnings 0.2.0.0
27.0 KB
  |  
Aug 17, 2018
More info Less info
Product compatibility
OpenText Enterprise Security Manager
Version 6.8 · 6.11.0 · 6.9.1
Version 7.0 · 7.2 · 7.3 · 7.4 · 7.5 · 7.6 · 7.7 · 7.8
Release notes

 Micro Focus rebranding changes 

Languages
English
Files
L1-Application Monitoring Web Services- Indicators and Warnings 0.1.0.0
25.6 KB
  |  
May 17, 2017
More info Less info
Product compatibility
OpenText Enterprise Security Manager
Version 6.8 · 6.11.0
Version 7.0 · 7.2 · 7.3 · 7.4 · 7.5 · 7.6 · 7.7 · 7.8
Release notes

Initial Release.

Languages
English
Files

Resources

Documentation
Activate License
Change Log and Discussion Forum
ArcSight Activate Framework
Activate Wiki
Activate Framework Installation and Configuration

Unsubscribe from notifications

You are receiving release updates for this item because you have subscribed to the following products:
If you unsubscribe, you will no longer receive any notifications for these products.
Tip: to update your subscription preferences, go to Manage Subscriptions from your Dashboard, uncheck the products you no longer want to receive notifications for, and click 'Save'.
Unsubscribe Cancel

Marketplace Terms of Service

In order to continue, you must accept the updated Marketplace Terms of Service
Since you are downloading an app from the OpenText Marketplace, you need to accept the updated Marketplace Terms of Service before you can continue. Use the link to review the Marketplace Terms of Service. Once complete check the, "I accept the Marketplace Terms of Service" box below and click accept to continue your download.


Accept Cancel
Your download has begun...

Your download has begun

Related content and resources

Your browser is not supported!

Please upgrade to one of the following broswers: Internet Explorer 11 (or greater) or the latest version of Chrome or Firefox

release-rel-2025-2-1-6322 | Wed Feb 5 16:30:41 PST 2025