L2-Malware Monitoring (Obsolete)

209891

OpenText OpenText Community

App Support Tiers

OpenText SUPPORTED

Support via OpenText Software Support, with a ticket filed against the associated product.

PARTNER

OpenText offers a content partnership program for select partners. Support for Partner Content offerings is provided by the partner and not by OpenText of the OpenText community.

OpenText COMMUNITY

OpenText Community Content is provided by OpenText for the benefit of customers, support for it is not available via OpenText Software Support but through specific community content forums.

COMMUNITY

Community Contributed Content is provided by OpenText customers and supported by them.

EARLY ACCESS

Show less ...Show more

The downloads referenced under the "Cybersecurity Early Access" category are made available to subscribers to mitigate time-critical issues but have not undergone formal quality and performance testing associated with official OpenText/Cybersecurity product releases. OpenText has a multi-stage Quality Assurance process. During Stage 1 we conduct a resource analysis, field mapping, ensure content level 1 functionality and analysis in our sandbox environment. Stage 2 is a complete validation including production validation. This package has cleared Stage 1 validation and therefore should be deployed with the appropriate pre-production validation. OpenText strongly recommends that any downloaded content is first checked and tested thoroughly in a non-production environment before committing to production. We welcome feedback and, should any content be shown to be faulty, detrimental or carry an incorrect claim of authorship, we shall endeavor to remove or correct such content as promptly as reasonably possible once notified and validated.

OpenText | OpenText Community

L2-Malware Monitoring - Situational Awareness

This package is intended to provide ArcSight context to L1-Malware Monitoring - Indicators and Warnings events, using both the ArcSight Network and Asset Model to alert the SOC Analyst and Operator.

977 downloads

Product compatibility

Description

This Package provides ArcSight context to L1 Malware Monitoring - Indicators and Warnings User Stories, allowing the SOC Analyst and Operator to identify malware infections on high critical Assets in the internal network. This package requires configured L1-Malware Monitoring - Indicators and Warnings package for further detection and investigations.

The following are some of the User Stories supported by this package:

Unresolved Malware detected in Critical or DMZ Host
Malware Outbreak in Zone
Malware Outbreak in DMZ Zone
Same Malware Infected Multiple Hosts in Zone
Critical and DMZ Host Infected Multiple Times by Different Malware
Critical and DMZ Host Infected Multiple Times by the Same Malware
Malware Auto-Protect Scan Engine Disabled in Critical or DMZ Host

Minimum Requirements

Activate Base - Version 2.5.0.0 and later
L1 Malware Monitoring - Indicators and Warnings

Releases

Release

Size

Date

L2-Malware Monitoring 1.1.0.2

22.1 KB

Nov 12, 2019

More info Less info

Product compatibility

ArcSight

Version 7.0 · 7.2

Version 6.11

Release notes

Rules tagged with MITRE ATT&CK

Languages

English

Files

L2-Malware Monitoring 1.1.0.1

19.1 KB

Aug 14, 2018

More info Less info

Product compatibility

OpenText Enterprise Security Manager

Version 6.8 · 6.11.0 · 6.9.1

Version 7.0 · 7.2 · 7.3 · 7.4 · 7.5 · 7.6 · 7.7 · 7.8

Release notes

Micro Focus rebranding changes

Languages

English

Files

L2-Malware Monitoring 1.1.0.0

18.0 KB

Feb 28, 2017

More info Less info

Product compatibility

OpenText Enterprise Security Manager

Version 6.8 · 6.11.0 · 6.9.1

Release notes

Latest Version.

Languages

English

Files

Resources

Activate License

Documentation

Change Log and Discussion Forum

ArcSight Activate Framework

Activate Wiki

Activate Framework Installation and Configuration

Marketplace

Marketplace

L2-Malware Monitoring (Obsolete)

Product compatibility

CATEGORY

Description

Minimum Requirements

Releases

Resources

Sign in

Marketplace

L2-Malware Monitoring (Obsolete)

App Support Tiers

Product compatibility

CATEGORY

Description

Minimum Requirements

Releases

Resources

Unsubscribe from notifications

Marketplace Terms of Service

Your download has begun