Backlinks to Packages in ArcSightActivate Web (Search all webs)

Results from ArcSightActivate web retrieved at 10:08 (GMT)

ActivateBase
Activate Base Activate Base provides resources (such as filters, global variables or active lists) used by all other packages. Activate Base Functionality There are ...
r4 - 21 Aug 2018 - 18:35 by EstebanHerrera
ActivateBaseResources
Resources for ActivateBaseResources The following describes all resources included for this package. If you modify a resource, we suggest adding a comment in the Description ...
ActivateInstallationScriptGeneratorTool
Activate Installation Script Generator Tool About The Activate Script Generator Tool allows developers to easily create batch and shell script files that will be ...
ActivateInstallationScriptGenratorTool
Activate Installation Script Generator Tool About The Activate Script Generator Tool allows developers to easily create batch and shell script files that will be ...
ActivateMarketTemplates
Activate Marketplace Templates Brief description of package, including history, main authors, benefits, use cases and overview of implementation Main Use Cases Below ...
ActivateMarketTemplatesResources
Resources for ActivateMarketTemplatesResources The following describes all resources included for this package. If you modify a resource, we suggest adding a comment ...
ActivatePackageInstallationCheckTool
Activate Package Installation Checker About Before uploading your Activate Product Package to Marketplace, use the Activate Package Installation Analyzer to test ...
ActivatePhilosophyDFM
ArcSight Multi Sensor Data Fusion Model Introduction The Multi Sensor Data Fusion Model is the core of the ArcSight Activate Framework. The DataFusionModel walkthrough ...
ActivateSecurityTechnologiesMonitoring
Malware Detection Capability Step 1: Device Administration Configuration instructions for all supported devices. Step 2: ArcSight Connector Setup Connector ...
ArcSightActivateBaseInstallation
ArcSight Activate Base Package Installation Guide Introduction The installation of the Activate content is now being done through a wrapper. We started doing this ...
ArcSightActivateInstallation
ArcSight Activate Installation Guide General procedure All activate packages have the similar installation procedure. Step1: download .zip file from MarketPlace ...
ArcSightActivateMalwareMonitoringSolutionInstallGuide
Malware Monitoring Activate Solution Installation Guide Introduction The installation of the Activate content is now being done through a wrapper. We started doing ...
ArcSightActivateOsSolutionInstallGuide
Operating System Level 1 Activate Solution Installation Guide Prerequisites Ensure the following is complete: * Activate Base Package has been installed Package ...
ArcSightActivatePackageUpgradeProcess
ArcSight Activate Package Upgrade Process Upgrade Procedure This procedure describes how to upgrade all activate packages 1. The package that you are upgrading ...
ArcSightActivatePackageVersioning
ArcSight Activate Best Practices Package Versioning Package versions help control when to update packages at package import time. There are several factors involved ...
ArcSightActivatePackaging
ArcSight Activate Packaging Introduction ArcSight Activate templates make it easy to package up all your activate content. Make sure to use the correct procedure ...
ArcSightActivatePerimeterL2SolutionInstallGuide
Perimeter and Network Monitoring L2 Activate Solution Installation Guide Introduction The installation of the Activate content is now being done through a wrapper ...
ArcSightActivatePerimeterSolutionInstallGuide
Perimeter and Network Monitoring Activate Solution Installation Guide Introduction The installation of the Activate content is now being done through a wrapper. We ...
AttackProgression
The ArcSight Activate Attack Progression Method The L3 Impact and Threat Analysis packages are currently under testing and not yet released to the ArcSight Marketplace ...
CCorePackages
Core Packages Package Type Detail Package Type Name: Core Packages Package Type Prefix: "C" Core Activate packages contain content used by all other packages. Package ...
CSecuritySystemMonitoring
C Security System Monitoring Introduction The Security System Monitoring (SSM) package is a collection of packages to help maintain the health of the environment ...
r19 - 04 May 2018 - 19:06 by RhydhamJoshiWiki
CSecuritySystemMonitoringResources
Resources for CSecuritySystemMonitoringResources The following describes all resources included for this package. If you modify a resource, we suggest adding a comment ...
CSecuritySystemMonitoringTestPlan
C Security System Monitoring User Acceptance Test Plan Note: There are no test events provided in this test plan. Use Case Acceptance Testing This test plan targets ...
CheckPointFirewallTestPlans
Check Point Firewall User Acceptance Test Plan Use Case Acceptance Testing This test plan targets: * to define the acceptance test criteria for the System Acceptance ...
CheckPointL1Installation
Check Point L1 Indicators and Warnings Installation Guide Prerequisites Ensure the following is complete: * Devices are configured as per the device configuration ...
CiscoAsaL1Installation
Cisco ASA L1 Indicators and Warnings Installation Guide Prerequisites Ensure the following is completed: * Devices are configured as per the device configuration ...
CiscoAsaTestPlans
Cisco ASA User Acceptance Test Plan Use Case Acceptance Testing This test plan targets: * to define the acceptance test criteria for the System Acceptance Test ...
CiscoSecureAcsL1Installation
Cisco Secure ACS L1 Indicators and Warnings Installation Guide Prerequisites Ensure the following is complete: * Devices are configured as per the device configuration ...
NEW - 24 Feb 2015 - 06:26 by FoswikiAdmin
CiscoSecureAcsTestPlans
Cisco Secure ACS User Acceptance Test Plan User Acceptance Testing This test plan targets: * To define the test criteria for the User Acceptance Test * To define ...
DNSMalwareAnalytics
Testing Approach The scope of this test is to verify that events coming from the Device are being received by the ESM Server. There are 2 different ways to send events ...
DataSecurityMonitoringBase
Data Security Monitoring Base This package provides common resources, such as Active Lists, Filters or Rules to other Data Security Monitoring Packages. Main Use ...
r3 - 04 May 2018 - 19:03 by RhydhamJoshiWiki
DataSecurityMonitoringBaseResources
Resources for DataSecurityMonitoringBaseResources The following describes all resources included for this package. If you modify a resource, we suggest adding a comment ...
EntityAndSystemStateTracking
The ArcSight Activate Entity and System State Tracking Method The L3 Impact and Threat Analysis packages are currently under testing and not yet released to the ArcSight ...
FrameworkResourceStructureNamingConventions
Resource Structure and Naming Conventions Introduction ArcSight Activate is a standardized approach to content development that provides guidance for developers to ...
FrameworkUseCaseDeliverables
Use Case Deliverables Introduction This documents describes all required artifacts required for a complete use case package. 1. Device Configuration Guide The Device ...
HowActivateBestPractices
Activate Content Development Best Practices What Packages Are Currently Being Developed? See the Activate Development page for the current list of projects, who may ...
HowActivateFrameworkBestPractices
Activate Framework Best Practices Introduction The Activate Framework is an end to end security monitoring framework. Everything starts with the log generating devices ...
HowActivateFrameworkUserStories
Security Philosophy The Activate Framework was created to help ArcSight users build and use security content. It provides a vocabulary and process to talk about security ...
HowInstallAndConfig
Activate Framework Installation and Configuration Introduction The Activate Framework is NOT just content. It is an end to end framework for getting the most out ...
HowToBuildCustomizationPackage
How to Build a Customization Package Introduction Customization packages are designed to save important configuration settings made when product packages are configured ...
L1APT10CloudHopperMonitoring
L1 APT10 Cloud Hopper Monitoring Brief description of package, including history, main authors, benefits, use cases and overview of implementation Main Use Cases ...
r9 - 14 Aug 2018 - 19:50 by EstebanHerrera
L1APT10CloudHopperMonitoringResources
Resources for L1APT10CloudHopperMonitoringResources The following describes all resources included for this package. If you modify a resource, we suggest adding a ...
L1APT10CloudHopperMonitoringTestPlan
L1 APT10 Cloud Hopper Monitoring User Acceptance Test Plan Note: This test plan does not need any product package. Use Case Acceptance Testing This test plan targets ...
L1ApplicationMonitoring
L1 Application Monitoring Brief description of package, including history, main authors, benefits, use cases and overview of implementation Main Use Cases Below are ...
L1ApplicationMonitoringDnsServices
Package Name Brief description of package, including history, main authors, benefits, use cases and overview of implementation Main Use Cases Below are the main use ...
L1ApplicationMonitoringWebApplications
L1 Application Monitoring Web Applications Brief description of package, including history, main authors, benefits, use cases and overview of implementation Main ...
L1ApplicationMonitoringWebServices
L1 Application Monitoring Web Services Indicators and Warnings Introduction The ArcSight Activate L1 Application Monitoring Web Services Indicators and Warnings ...
r30 - 16 May 2018 - 15:43 by EstebanHerrera
L1ApplicationMonitoringWebServicesResources
Resources for L1ApplicationMonitoringWebServicesResources The following describes all resources included for this package. If you modify a resource, we suggest adding ...
L1ApplicationMonitoringWebServicesTestPlan
L1 Application Monitoring Web Services User Acceptance Test Plan Note: This test plan has been designed and implemented based on real events generated from Web Service ...
L1DataSecurityMonitoring
L1 Data Security Monitoring This page covers several packages related to L1 Data Security Monitoring. L1DataSecurityMonitoringEncryption deals with L1 Encryption issues ...
L1DataSecurityMonitoringDLP
L1 Data Security Monitoring DLP This package detects data issues in Data Loss Prevention (DLP). Authors: Ashwin Aruldas Geneva Capos Oswaldo Dimas Francisco ...
r10 - 16 May 2018 - 15:25 by EstebanHerrera
L1DataSecurityMonitoringDLPResources
Resources for L1DataSecurityMonitoringDLPResources The following describes all resources included for this package. If you modify a resource, we suggest adding a comment ...
L1DataSecurityMonitoringDLPTestPlan
L1 Data Security Monitoring DLP User Acceptance Test Plan . Testing Approach Once configured L1 Data Security DLP package as well as at least one DLP Device Product ...
L1DataSecurityMonitoringEncryption
L1 Data Security Encryption Indicators and Warnings The L1 Data Security Encryption Indicators and Warnings package provides resources that allow the SOC analyst ...
r15 - 14 Aug 2018 - 20:07 by EstebanHerrera
L1DataSecurityMonitoringEncryptionResources
Resources for L1 Data Security Encryption Indicators and Warnings The following describes all resources included in this package. If you modify a resource, we suggest ...
r6 - 14 Aug 2018 - 20:04 by EstebanHerrera
L1DataSecurityMonitoringEncryptionTestPlan
L1 Data Security Encryption Indicators and Warnings User Acceptance Test Plan . Testing Approach Once configured L1 Data Security Encryption Indicators and ...
r7 - 16 Aug 2018 - 18:45 by EstebanHerrera
L1EntityMonitoring
L1 Entity Monitoring This package identifies the anomalies dealing with the Entity authentication and management. Authors: Mary Cordova SNEI Donald Chapell Oswaldo ...
L1EntityMonitoringResources
Resources for L1EntityMonitoringResources The following describes all resources included for this package. If you modify a resource, we suggest adding a comment in ...
r21 - 09 Nov 2018 - 15:40 by EstebanHerrera
L1EntityMonitoringTestPlan
UserMonitoringTestPlan.events L1 Entity Monitoring User Acceptance Test Plan . Testing Approach Once configured L1 Entity Monitoring package filters with at least ...
L1HostMonitoring
L1 Host Monitoring Indicators and Warnings Authors Nellie Wang HPE Dat Nguyen HPE Phil Jorgensen (MNIT) Henk Jan van Esterik (Micro Focus Professional Services ...
L1HostMonitoringResources
Resources for L1 Host Monitoring Package The following describes all resources included for this package. If you modify a resource, we suggest adding a comment in ...
L1HostMonitoringTestPlan
L1 Host Monitoring User Acceptance Test Plan Note: This test plan does not contain any test events. Use Case Acceptance Testing This test plan targets: * to define ...
L1IndicatorsAndWarnings
L1 Indicators and Warnings Introduction to L1 Indicators and Warnings The Indicators and Warnings packages support the Level 1 Object Refinement (in Activate terms ...
L1InfrastructureMonitoring
L1 Infrastructure Monitoring Brief description of package, including history, main authors, benefits, use cases and overview of implementation Main Use Cases Below ...
L1InfrastructureMonitoringResources
Resources for L1InfrastructureMonitoringResources The following describes all resources included for this package. If you modify a resource, we suggest adding a comment ...
L1InfrastructureMonitoringTestPlan
L1 Infrastructure Monitoring User Acceptance Test Plan Note: This test plan does not provide a complete set of test cases. The raw or .events are not provided at this ...
L1MalwareMonitoring
L1 Malware Monitoring The L1 Malware Monitoring package is intended to provide both simple indicators of potential malware incidents as well as a frame work to support ...
r15 - 04 May 2018 - 19:04 by RhydhamJoshiWiki
L1MalwareMonitoringEmail
L1 Malware Monitoring Email The L1 Malware Monitoring Email package is intended to provide both simple indicators of potential Email Malware incidents as well as a ...
r13 - 16 Aug 2018 - 18:47 by EstebanHerrera
L1MalwareMonitoringEmailResources
Resources for L1MalwareMonitoringEmailResources The following describes all resources included for this package. If you modify a resource, we suggest adding a comment ...
L1MalwareMonitoringEmailTestPlan
L1 Malware Monitoring User Acceptance Test Plan Note: This test plan depends on event generation by Product Malware Email Packages, such as McAfee Security for Exchange ...
r3 - 16 Aug 2018 - 18:48 by EstebanHerrera
L1MalwareMonitoringResources
Resources for L1MalwareMonitoringResources The following describes all resources included for this package. If you modify a resource, we suggest adding a comment in ...
L1MalwareMonitoringTestPlan
L1 Malware Monitoring User Acceptance Test Plan Note: This test plan depends on event generation by Product Malware Packages, such as Symantec Endpoint Protection ...
L1NetworkMonitoring
L1 Network Monitoring This package provides a view on IDS and attempt events on the network. Main Use Cases Below are the main use cases and user stories for this ...
L1NetworkMonitoringResources
Resources for L1NetworkMonitoringResources The following describes all resources included for this package. If you modify a resource, we suggest adding a comment in ...
r3 - 14 Aug 2018 - 15:54 by EstebanHerrera
L1NetworkMonitoringTestPlan
L1 Network User Acceptance Test Plan Note: This plan does not provide any test events. Use Case Acceptance Testing This test plan targets: * to define the acceptance ...
r3 - 26 Jul 2018 - 17:48 by EstebanHerrera
L1OperatingSystem
L1 Operating System This package provides resources, such as active lists and session lists to other packages. Main Use Cases There are no use cases in this package ...
r3 - 04 May 2018 - 19:05 by RhydhamJoshiWiki
L1OperatingSystemResources
Resources for L1OperatingSystemResources The following describes all resources included for this package. If you modify a resource, we suggest adding a comment in ...
L1PerimeterAndNetworkMonitoring
L1 Perimeter and Network Monitoring This package provides a view on IDS and attempt events on the network. L1PerimeterAndNetworkMonitoringCategorization lists categorization ...
L1PerimeterAndNetworkMonitoringTestPlan
L1 Perimeter and Network User Acceptance Test Plan Note: This plan does not provide any test events. Use Case Acceptance Testing This test plan targets: * to define ...
L1PerimeterMonitoring
L1 Perimeter Monitoring Indicators and Warnings This package provides a view on IDS and attempt events on the network. Main Use Cases Below are the main use cases ...
r10 - 20 May 2019 - 22:45 by EstebanHerrera
L1PerimeterMonitoringResources
Resources for L1PerimeterMonitoringResources The following describes all resources included for this package. If you modify a resource, we suggest adding a comment ...
r3 - 28 May 2019 - 17:36 by EstebanHerrera
L1PerimeterMonitoringTestPlan
L1 Perimeter User Acceptance Test Plan Note: This plan does not provide any test events. Use Case Acceptance Testing This test plan targets: * to define the acceptance ...
L1PhysicalSecurity
L1 Physical Security Monitoring Introduction The "L1 Physical Security Indicators and Warnings" package so far focuses on swipe card activity, motion, alarm, and ...
L1PhysicalSecurityMonitoringResources
Resources for L1PhysicalSecurityMonitoringResources The following describes all resources included for this package. If you modify a resource, we suggest adding a ...
r2 - 11 Mar 2017 - 00:14 by MaulinDalal
L1PhysicalSecurityResources
Resources for L1PhysicalSecurityResources The following describes all resources included for this package. If you modify a resource, we suggest adding a comment in ...
L1PhysicalSecurityTestPlan
L1 Physical Security User Acceptance Test Plan This L1 Physical Security package filters uses atleast one filter from the device of the Product package (Eg Lenel Onguard ...
r5 - 11 Mar 2017 - 00:14 by MaulinDalal
L1ThreatIntelligence
L1 Threat Intelligence Indicators and Warnings Overview This warnings and indicators package populates, displays and monitors the Threat Model . The Threat Model ...
L1ThreatIntelligenceTestPlan
L1 Threat Intelligence User Acceptance Test Plan Use Case Acceptance Testing This test plan targets: * to define the acceptance test criteria for the System Acceptance ...
r3 - 14 Aug 2018 - 22:27 by EstebanHerrera
L1WannaCryRansomwareMonitoring
L1 WannaCry Malware Monitoring Brief description of package, including history, main authors, benefits, use cases and overview of implementation Main Use Cases Below ...
r9 - 16 Aug 2018 - 18:55 by EstebanHerrera
L1WannaCryRansomwareMonitoringResources
Resources for L1WannaCryRansomwareMonitoringResources The following describes all resources included for this package. If you modify a resource, we suggest adding ...
L2APT10CloudHopperMonitoring
L2 APT10 Cloud Hopper Monitoring Brief description of package, including history, main authors, benefits, use cases and overview of implementation Main Use Cases ...
L2APT10CloudHopperMonitoringResources
Resources for L2APT10CloudHopperMonitoringResources The following describes all resources included for this package. If you modify a resource, we suggest adding a ...
L2APT10CloudHopperMonitoringTestPlan
L2 APT10 Cloud Hopper Monitoring User Acceptance Test Plan Note: This test plan does not need any product package. Use Case Acceptance Testing This test plan targets ...
L2ApplicationMonitoringWebServices
L2 Application Monitoring Web Services Situational Awareness Authors Nellie Wang Seema Khan Introduction The ArcSight Activate L2 Application Monitoring ...
L2ApplicationMonitoringWebServicesResources
Resources for L2ApplicationMonitoringWebServicesResources The following describes all resources included for this package. If you modify a resource, we suggest adding ...
L2DataSecurityMonitoring
L2 Data Security Monitoring This page covers several packages related to L2 Data Security Monitoring. L2DataSecurityMonitoringEncryption deals with L2 encryption issues ...
L2DataSecurityMonitoringDLP
L2 Data Security Monitoring DLP This package deals with data issues in Data Loss Prevention (DLP). Authors: Ashwin Aruldas Geneva Capos Oswaldo Dimas Francisco ...
r6 - 16 May 2018 - 15:26 by EstebanHerrera
L2DataSecurityMonitoringDLPResources
Resources for L2DataSecurityMonitoringDLPResources The following describes all resources included for this package. If you modify a resource, we suggest adding a comment ...
L2DataSecurityMonitoringDLPTestPlan
L2 Data Security Monitoring DLP User Acceptance Test Plan Use Case Acceptance Testing Testing Approach Once configured L1 L2 Data Security DLP packages and at ...
L2DataSecurityMonitoringEncryption
L2 Data Security Encryption Situational Awareness The L2 Data Security Encryption Situational Awareness package provides resources that allow the SOC analyst to ...
L2DataSecurityMonitoringEncryptionResources
Resources for L2 Data Security Encryption Situational Awareness The following describes all resources included in this package. If you modify a resource, we suggest ...
L2DataSecurityMonitoringEncryptionTestPlan
L2 Data Security Encryption Situational Awareness User Acceptance Test Plan . Testing Approach Once configured L2 Data Security Encryption Situational Awareness ...
L2EntityMonitoring
L2 Entity Monitoring This package identifies the anomalies dealing with the entity management and authentication. Authors: Mary Cordova Donald Chapell Oswaldo ...
L2EntityMonitoringResources
Resources for L2EntityMonitoringResources The following describes all resources included in this package. If you modify a resource, we suggest adding a comment in ...
r12 - 28 Feb 2017 - 20:11 by RhydhamJoshiWiki
L2EntityMonitoringTestPlan
L2 Entity Monitoring User Acceptance Test Plan . Testing Approach Once configured L1 Entity Monitoring, L2 Entity Monitoring package filters using at least one Device ...
L2HostMonitoring
L2 Host Monitoring Situational Awareness Overview The L2_Host_Monitoring Situational Awareness package is designed to monitor and track these correlation or internal ...
L2HostMonitoringResources
Resources for L2 Host Monitoring Package The following describes all resources included for this package. If you modify a resource, we suggest adding a comment in ...
L2HostMonitoringTestPlan
L2 Host Monitoring User Acceptance Test Plan Note: This test plan does not contain any test events. Use Case Acceptance Testing This test plan targets: * to define ...
L2MalwareMonitoring
L2 Malware Monitoring The L2 Malware Monitoring package is intended to provide ArcSight context to L1 Malware Monitoring events, using both the ArcSight Network and ...
L2MalwareMonitoringEmail
L2 Malware Monitoring Email The L2 Malware Monitoring Email package is intended to provide ArcSight context to L1 Malware Monitoring Email events, using both the ArcSight ...
L2MalwareMonitoringEmailResources
Resources for L2MalwareMonitoringEmailResources The following describes all resources included for this package. If you modify a resource, we suggest adding a comment ...
L2MalwareMonitoringEmailTestPlan
L2 Malware Monitoring Email User Acceptance Test Plan Note: This test plan depends on event generation by Product Malware Packages. Use Case Acceptance Testing This ...
L2MalwareMonitoringTestPlan
L2 Malware Monitoring User Acceptance Test Plan Note: This test plan depends on event generation by Product Malware Packages, such as Symantec Endpoint Protection ...
L2MalwareResources
Resources for L2MalwareResources The following describes all resources included for this package. If you modify a resource, we suggest adding a comment in the Description ...
L2NetworkMonitoring
L2 Network Monitoring Situational Awareness Brief description of package, including history, main authors, benefits, use cases and overview of implementation Main ...
r11 - 14 Aug 2018 - 15:56 by EstebanHerrera
L2PerimeterMonitoring
L2 Perimeter Monitoring Situational Awareness This package detects anomalous activity detected by firewalls using knowledge of the internal network and assets. ...
r14 - 28 May 2019 - 17:51 by EstebanHerrera
L2PerimeterMonitoringResources
Resources for L2PerimeterMonitoringResources The following describes all resources included for this package. If you modify a resource, we suggest adding a comment ...
r2 - 28 May 2019 - 17:31 by EstebanHerrera
L2PhysicalSecurity
L2 Physical Security Monitoring The L2 Physical Security package is used to provide Arcsight context to L1 Physical Security Package. Main Use Cases Below are the ...
L2PhysicalSecurityMonitoringTestPlan
L2 Physical Security User Acceptance Test Plan Testing Approach Once configured L1 Physical Security, L2 Physical Security package filters using at least one Device ...
L2PhysicalSecurityResouces
Resources for L2PhysicalSecurityResouces Packages Resource Name Path Description L2 Physical Security Situational Awareness /All Packages/ArcSight Activate ...
L2PhysicalSecurityResources
Resources for L2PhysicalSecurityResources The following describes all resources included for this package. If you modify a resource, we suggest adding a comment in ...
r3 - 11 Mar 2017 - 00:16 by MaulinDalal
L2SituationalAwareness
L2 Situational Awareness Introduction to L2 Situational Awareness The Situational Awareness packages support the Level 2 Situational Refinement (in Activate terms ...
L2ThreatIntelligence
L2 Threat Intelligence Situational Awareness This package builds upon the L1 Threat Intelligence package to provide detection and reporting on network traffic to ...
L2ThreatIntelligenceResources
Resources for L2ThreatIntelligenceResources The following describes all resources included for this package. If you modify a resource, we suggest adding a comment ...
L2WannaCryMalwareDetectionTestPlan
L2 WannaCry Malware Detection User Acceptance Test Plan Note: This test plan does not need any product package. Use Case Acceptance Testing This test plan targets ...
L2WannaCryRansomwareMonitoring
L2 WannaCry Malware Monitoring Brief description of package, including history, main authors, benefits, use cases and overview of implementation Main Use Cases Below ...
L2WannaCryRansomwareMonitoringResources
Resources for L2WannaCryRansomwareMonitoringResources The following describes all resources included for this package. If you modify a resource, we suggest adding ...
L3ApplicationMonitoring
L3 Application Monitoring Impact and Threat Analysis The L3 Impact and Threat Analysis packages are currently under testing and not yet released to the ArcSight ...
L3BaseImpactAndThreatAnalysis
L3 Base Threat and Impact Analysis The L3 Impact and Threat Analysis packages are currently under testing and not yet released to the ArcSight Marketplace. Check ...
L3BaseImpactAndThreatAnalysisResources
Resources for L3BaseImpactAndThreatAnalysisResources The following describes all resources included for this package. If you modify a resource, we suggest adding a ...
L3DataMonitoring
L3 Data Monitoring Threat and Impact Analysis The L3 Impact and Threat Analysis packages are currently under testing and not yet released to the ArcSight Marketplace ...
L3EntityMonitoring
L3 Entity Monitoring Threat and Impact Analysis The L3 Impact and Threat Analysis packages are currently under testing and not yet released to the ArcSight Marketplace ...
L3HostMonitoring
L3 Host Monitoring Threat and Impact Analysis The L3 Impact and Threat Analysis packages are currently under testing and not yet released to the ArcSight Marketplace ...
L3ImpactAndThreatAnalysis
L3 Impact and Threat Analysis The L3 Impact and Threat Analysis packages are currently under testing and not yet released to the ArcSight Marketplace. Check the marketplace ...
L3ImpactThreatAnalysisTestPlan
L3 Base Impact and Threat Analysis User Acceptance Test Plan Note: This test plan depends on event generation by Product Malware Packages. Use Case Acceptance Testing ...
L3MalwareMonitoring
L3 Malware Monitoring Threat and Impact Analysis The L3 Impact and Threat Analysis packages are currently under testing and not yet released to the ArcSight Marketplace ...
L3NetworkMonitoring
L3 Network Monitoring Threat and Impact Analysis The L3 Impact and Threat Analysis packages are currently under testing and not yet released to the ArcSight Marketplace ...
L3PerimeterMonitoring
L3 Perimeter Monitoring Threat and Impact Analysis The L3 Impact and Threat Analysis packages are currently under testing and not yet released to the ArcSight Marketplace ...
L3ThreatIntelligence
L3 Threat Intelligence Threat and Impact Analysis The L3 Impact and Threat Analysis packages are currently under testing and not yet released to the ArcSight Marketplace ...
L3ThreatTrackingDeprecated
L3 Threat Tracking (Deprecated) The L3 Impact and Threat Analysis packages are currently under testing and not yet released to the ArcSight Marketplace. Check the ...
r7 - 04 May 2018 - 19:08 by RhydhamJoshiWiki
L3ThreatTrackingResources
Resources for L3ThreatTrackingResources The following describes all resources included for this package. If you modify a resource, we suggest adding a comment in the ...
L3TreatTrackingTestPlan
L3 Threat Tracking User Acceptance Test Plan Note: The test events are not provided with this test plan. Use Case Acceptance Testing This test plan targets: * ...
L3WebServicesMonitoring
L3 Application Monitoring Web Services Threat and Impact Analysis The L3 Impact and Threat Analysis packages are currently under testing and not yet released to ...
L4ProcessRefinement
L4 Process Refinement Package Type Detail Package Type Name: INSERT NAME OF PACKAGE TYPE: Package Type Prefix: "INSERT 1 or 2 CHARACTER PREFIX FOR THIS PACKAGE TYPE ...
McAfeeDLPtestplan
Testing Approach The scope of this test is to verify that events coming from the Device are being received by the ESM Server. There are 2 different ways to send events ...
McAfeeDataLossPreventionInstall
Installation DLP 9.4 Flexconnector Installation and Configuration If DLP 9.4 with ePO 5.3 is used follow these steps to configure Flexconnector properties file, else ...
McAfeeEpolicyL1Installation
McAfee ePolicy Orchestrator L1 Indicators and Warnings Installation Guide Prerequisites Ensure the following is complete: * Devices are configured as per the device ...
McAfeeEpolicyTestPlans
McAfee ePolicy Orchestrator User Acceptance Test Plan Use Case Acceptance Testing This test plan targets: * to define the acceptance test criteria for the System ...
McAfeeHostDataLossPreventionResources
Resources for McAfeeHostDataLossPreventionResources The following describes all resources included for this package. If you modify a resource, we suggest adding a ...
McAfeeHostDataLossPreventionTestPlan
Use Case Acceptance Testing This test plan targets: * to define the acceptance test criteria for the System Acceptance Test * to define the types of test to ...
McAfeeHostDataLossPreventionTestPlanCopy
Use Case Network Protection: * System monitor channel to show correlated events for file transfer on suspicious ports. Testing Approach Use the events from ...
MicroFocusDMATestPlan
Testing Approach The scope of this test is to verify that events coming from the Device are being received by the ESM Server. There are 2 different ways to send events ...
MicrosoftWindowsL1ConfigurationGuide
Microsoft Windows Indicators and Warnings Installation Guide Prerequisites Ensure the following is complete: * Devices are configured as per the device configuration ...
NEW - 24 Feb 2015 - 06:25 by FoswikiAdmin
MicrosoftWindowsTestPlans
Microsoft Windows User Acceptance Test Plan Use Case Acceptance Testing This test plan targets: * to define the acceptance test criteria for the System Acceptance ...
PAWSVPCFlows
AWS VPC Flows The P AWS_VPC Flows package offers an easy way to monitor Flow Connections on AWS VPC environment. Authors and Attributions Esteban Herrera Main Use ...
r6 - 05 Jun 2019 - 17:29 by EstebanHerrera
PAWSVPCFlowsTestPlan
Main.EstebanHerrera 26 Apr 2019 AWS VPC Flows Product Package User Acceptance Test Plan Use Case Acceptance Testing This test plan targets: * to define the acceptance ...
r5 - 05 Jun 2019 - 17:14 by EstebanHerrera
PAmazonWebServices
Amazon Web Services Brief description of package, including history, main authors, benefits, use cases and overview of implementation Main Use Cases Below are the ...
r2 - 02 Apr 2018 - 16:08 by EstebanHerrera
PBindDNS
P Bind DNS The ArcSight Activate P Bind DNS Package has been developed to support the L1 Application Monitoring DNS Services Indicators and Warnings package, detecting ...
PBindDNSResources
Resources for PBindDNSResources The following describes all resources included for this package. If you modify a resource, we suggest adding a comment in the Description ...
PBindDNSTestPlan
P Bind DNS User Acceptance Test Plan Note: This test plan does not provide a complete set of test cases. Use Case Acceptance Testing This test plan targets: * ...
PBlueCoatProxy
P Blue Coat Proxy Introduction This package contains filters, rules, and other content to work with Blue Coat Proxy events. Author: Beirne Konarski Supported Use ...
PBlueCoatProxyResources
Resources for PBlueCoatProxyResources The following describes all resources included for this package. If you modify a resource, we suggest adding a comment in the ...
PBlueCoatProxyTestPlan
Blue Coat Proxy Product Package User Acceptance Test Plan Use Case Acceptance Testing This test plan targets: * to define the acceptance test criteria for the ...
r3 - 10 Jul 2018 - 20:19 by EstebanHerrera
PCheckPointFirewall
P Check Point This package handles events for Check Point Firewall and VPN functionality. Main Use Cases Below are the main use cases for this packages: Covered ...
PCheckPointFirewall1200
P Check Point VPN 1 and FW 1 1.2.0.0 This package handles events for Check Point Firewall and VPN functionality. Main Use Cases Below are the main use cases for this ...
PCheckPointFirewall1200Resources
Packages Resource Name Path Description P Check Point VPN 1 and FW 1 /All Packages/ArcSight Activate/ Field Sets Resource Name Path Description ...
PCheckPointFirewallResources
Resources for P Check Point VPN 1 and FW 1 The following describes all resources included for this package. If you modify a resource, we suggest adding a comment in ...
r3 - 08 May 2018 - 17:58 by RhydhamJoshiWiki
PCheckPointFirewallTestPlan
Check Point Firewall User Acceptance Test Plan Use Case Acceptance Testing This test plan targets: * to define the acceptance test criteria for the System Acceptance ...
r6 - 01 Jun 2018 - 21:15 by RhydhamJoshiWiki
PCiscoASA
P Cisco ASA Introduction In computer networking, Cisco ASA 5500 Series Adaptive Security Appliances, or simply Cisco ASA, is Cisco's line of network security devices ...
PCiscoASAResources
Resources for PCiscoASAResources The following describes all resources included for this package. If you modify a resource, we suggest adding a comment in the Description ...
PCiscoASATestPlan
Cisco ASA User Acceptance Test Plan Note: This test plan does not provide a complete set of test cases. The raw or .events are not provided at this time. Use Case ...
r2 - 16 May 2018 - 17:45 by EstebanHerrera
PCiscoFirePowerTestPlan
PCiscoFirepower Product Package User Acceptance Test Plan Use Case Acceptance Testing This test plan targets: * To define the test criteria for the User Acceptance ...
r3 - 09 Sep 2019 - 18:55 by EstebanHerrera
PCiscoFirepower
P Cisco Firepower Introduction Cisco Firepower is an integrated suite of network security and traffic management products, deployed either on purpose built platforms ...
r12 - 12 Sep 2019 - 14:32 by EstebanHerrera
PCiscoFirepowerResources
Packages Resource Name Path Description P Cisco Firepower /All Packages/ArcSight Activate Active Channels Resource Name Path Description ...
PCiscoNXOS
P Cisco NX OS Introduction NX OS is a network operating system for the Nexus series Ethernet switches and MDS series Fibre Channel storage area network switches made ...
PCiscoNXOSResources
Resources for PCiscoNXOSResources The following describes all resources included for this package. If you modify a resource, we suggest adding a comment in the Description ...
PCiscoNXOSTestPlan
Cisco NXOS Test Plan User Acceptance Testing This test plan targets: To define the test criteria for the User Acceptance Test To define the requirements for test ...
PCiscoRouter
Cisco Router IOS (originally Internetwork Operating System) is a family of software used on most Cisco Systems routers and current Cisco network switches. (Earlier ...
r3 - 27 Aug 2019 - 17:02 by EstebanHerrera
PCiscoRouterTestPlan
Main.EstebanHerrera 26 Apr 2019 Cisco Router Product Package User Acceptance Test Plan Use Case Acceptance Testing This test plan targets: * to define the acceptance ...
r2 - 27 Aug 2019 - 16:03 by EstebanHerrera
PCiscoSecureACS
P Cisco Secure ACS This package covers use cases for Cisco Secure Access Control Server (ACS) that is an access policy control platform. Main Use Cases Below are ...
PCiscoSecureACSResources
Resources for PCiscoSecureACSResources The following describes all resources included for this package. If you modify a resource, we suggest adding a comment in the ...
PCiscoSecureACSTestPlan
Cisco Secure ACS User Acceptance Test Plan User Acceptance Testing This test plan targets: * To define the test criteria for the User Acceptance Test * To define ...
PCitrixPackage
Citrix Current Citrix package mainly covers NetScaler, which provides Scalable network infrastructure for high availability, performance, and security of datacenter ...
PCitrixTestPlan
Citrix Test Plan User Acceptance Testing This test plan targets: To define the test criteria for the User Acceptance Test To define the requirements for test ...
PCylancePROTECT
P CylancePROTECT Product Package CylancePROTECT is an integrated threat prevention solution that combines the power of artificial intelligence (AI) to block malware ...
PCylancePROTECTResources
Packages Resource Name Path Description P CylancePROTECT /All Packages/ArcSight Activate/ Filters Resource Name Path Description All CylancePROTECT ...
PCylancePROTECTTestPlan
P CylancePROTECT Package Test Plan Use Case Acceptance Testing This test plan targets: * to define the acceptance test criteria for the System Acceptance Test ...
PFireEye
FireEye MPS FireEye is the leader in stopping advanced targeted attacks that use advanced malware, zero day exploits, and APT tactics. FireEye solutions supplement ...
PFortinetFortigate
P Fortinet Fortigate Fortinet Fortigate series is Fortinet s Security product delivers next generation firewall capabilities and Protects against cyber threats with ...
PFortinetFortigateTestPlan
Fortnet Fortigate User Acceptance Test Plan Use Case Acceptance Testing This test plan targets: * to define the acceptance test criteria for the System Acceptance ...
PHPEDNSMalwareAnalyticsResources
Resources for PHPEDNSMalwareAnalyticsResources The following describes all resources included for this package. If you modify a resource, we suggest adding a comment ...
PImpervaSecureSphere
P Imperva Secure Sphere This Package contains filter, rules ,active channels and fieldsets to work with Imperva SecureSphere events. Main Use Cases Below are the ...
PImpervaSecureSphereResources
Resources for PImpervaSecureSphere The following describes all resources included for this package. If you modify a resource, we suggest adding a comment in the Description ...
PImpervaSecureSphereTestPlan
P Imperva Secure Sphere User Acceptance Test Plan Note: There are no test events provided in this test plan. Use Case Acceptance Testing This test plan targets: ...
PJuniperJUNOS
Product Package Juniper JUNOS Introduction Juniper JUNOS is one of the IT networking products from Juniper. A router forwards data packets between computer networks ...
r8 - 07 Oct 2019 - 16:10 by EstebanHerrera
PJuniperJunos
P Juniper JUNOS (Work in progress) This package handles events for Check Point Firewall and VPN functionality. Main Use Cases Below are the main use cases for this ...
PJuniperJunosResources
Packages Resource Name Path Description P Juniper JUNOS /All Packages/ArcSight Activate/ Filters Resource Name Path Description All Juniper ...
PJuniperNetScreenFirewall
Product Package Juniper NetScreen Package Description Juniper NetScreen series is Juniper s Security products for corporate enterprises and home offices. It provides ...
r10 - 18 Sep 2019 - 14:48 by EstebanHerrera
PJuniperNetScreenFirewallResources
Resources for PJuniperNetScreenFirewall Packages Resource Name Path Description P Juniper NetScreen Firewall /All Packages/ArcSight Activate Active ...
r3 - 21 Aug 2019 - 16:24 by EstebanHerrera
PJuniperNetScreenFirewallTestPlan
Main.EstebanHerrera 01 Feb 2019 Juniper NetScreen Firewall User Acceptance Test Plan User Acceptance Testing This test plan targets: * To define the test criteria ...
r3 - 16 Aug 2019 - 16:16 by EstebanHerrera
PJuniperRouterResources
Resources for Product Package Juniper JUNOS The following describes all resources included for this package. If you modify a resource, we suggest adding a comment ...
r6 - 23 Sep 2019 - 18:08 by EstebanHerrera
PJuniperRouterTestPlan
Main.EstebanHerrera 04 Feb 2019 Juniper JUNOS User Acceptance Test Plan User Acceptance Testing This test plan targets: * To define the test criteria for the ...
r4 - 23 Sep 2019 - 18:08 by EstebanHerrera
PLenelOnguard
P Lenel Onguard 2013 Lenel is a Global leader in providing advanced security solutions and flexible integration solution to the organization. Onguard Access control ...
PLenelOnguard2013TestPlan
Lenel Onguard User Acceptance Test Plan Note: This test plan does not provide a complete set of test cases. Use Case Acceptance Testing This test plan targets: ...
r2 - 22 Feb 2017 - 08:04 by MaulinDalal
PLinuxDHCP
Linux DHCP The P Linux DHCP package offers an easy way to monitor address assignment on the network, likewise provides the flexibility to be integrated with other ...
r8 - 23 Oct 2018 - 15:46 by EstebanHerrera
PLinuxDHCPResources
PLinuxDHCPResources The following describes all resources included for this package. If you modify a resource, we suggest adding a comment in the Description field ...
r2 - 28 Aug 2018 - 17:25 by EstebanHerrera
PLinuxDHCPTestPlan
Main.EstebanHerrera 20 Aug 2018 Linux DHCP Product Package User Acceptance Test Plan Use Case Acceptance Testing This test plan targets: * to define the acceptance ...
r3 - 28 Aug 2018 - 17:25 by EstebanHerrera
PLinuxOS
P Linux The P Linux package focuses on both host and entity use cases related to the various functions of the Linux Operating System. Authors Contributors: Donald ...
PLinuxOSResources
Resources for PLinuxOSResources The following describes all resources included in this package. If you modify a resource, we suggest adding a comment in the Description ...
PLinuxOsTestPlan
Linux OS User Acceptance Test Plan Note: This test plan does not provide a complete set of test cases. Use Case Acceptance Testing This test plan targets: * to ...
PMcAfeeDataLossPrevention
McAfee Data Loss Prevention This Package handles events for McAfee Host Data Loss Prevention installed along with McAfee ePO Server. Supported L1 L2 Data Security ...
PMcAfeeDataLossPreventionResources
Resources for PMcAfeeDataLossPreventionResources The following describes all resources included for this package. If you modify a resource, we suggest adding a comment ...
PMcAfeeEPOBase
P McAfee ePO Base This package provides the folder structure solution managed by McAfee ePolicy Orchestrator. Main Use Cases This package provides the folder structure ...
PMcAfeeEPOBaseResources
Resources for PMcAfeeEPOBaseResources The following describes all resources included for this package. If you modify a resource, we suggest adding a comment in the ...
PMcAfeeEndpointEncryption
P McAfee Endpoint Encryption This package identifies McAfee Drive Encryption and McAfee File and Removable Media Protection events. Authors: Rhydham Joshi Main ...
PMcAfeeEndpointEncryptionConnectorConfiguration
P McAfee Endpoint Encryption Connector Configuration Introduction McAfee Endpoint Encryption produces logs for below modules: * McAfee ePO version: ePO Orchestrator ...
r13 - 15 Jun 2017 - 22:11 by RhydhamJoshiWiki
PMcAfeeEndpointEncryptionResources
Resources for P McAfee Endpoint Encryption Packages Resource Name Path Description P McAfee Endpoint Encryption /All Packages/ArcSight Activate The ...
PMcAfeeEndpointSecurity
P McAfee Endpoint Security In development. This package handles the use cases for Endpoint Security solution managed by McAfee ePolicy Orchestrator. Main Use Cases ...
PMcAfeeEndpointSecurityResources
Packages Resource Name Path Description P McAfee ePO Endpoint Security /All Packages/ArcSight Activate/ P McAfee ePO Endpoint Security Active Lists ...
PMcAfeeEpo
P McAfee ePO Virus Scan This package handles the use cases for endpoint VirusScan solution managed by McAfee ePolicy Orchestrator. Main Use Cases User stories This ...
r7 - 04 May 2018 - 19:10 by RhydhamJoshiWiki
PMcAfeeEpoResources
Resources for PMcAfeeEpoResources The following describes all resources included for this package. If you modify a resource, we suggest adding a comment in the Description ...
PMcAfeeEpoTestPlan
McAfee ePolicy Orchestrator User Acceptance Test Plan Note: This test plan is incomplete at this time. Use Case Acceptance Testing This test plan targets: * to ...
PMcAfeeEpoVirusScan
P McAfee ePO Virus Scan This package handles the use cases for endpoint VirusScan solution managed by McAfee ePolicy Orchestrator. Main Use Cases User stories ...
PMcAfeeEpoVirusScanResources
Resources for PMcAfeeEpoVirusScanResources The following describes all resources included for this package. If you modify a resource, we suggest adding a comment in ...
PMcAfeeSecurityforExchange
P McAfee Security for Exchange This package handles the use cases for McAfee Security for Exchange solution managed by the McAfee ePO Server. Main User Stories This ...
PMcAfeeSecurityforExchangeResources
Resources for PMcAfeeSecurityforExchangeResources The following describes all resources included for this package. If you modify a resource, we suggest adding a comment ...
PMcAfeeSecurityforExchangeTestPlan
McAfee Security for Exchange User Acceptance Test Plan Note: This test plan is incomplete at this time. Use Case Acceptance Testing This test plan targets: * to ...
PMcAfeeVirusScan
P McAfee VirusScan This package handles the use cases for endpoint VirusScan solution managed by McAfee ePolicy Orchestrator. Main Use Cases User stories This ...
r3 - 04 May 2018 - 19:11 by RhydhamJoshiWiki
PMcAfeeWebGateway
P McAfee Web Gateway McAfee Web Gateway (Web Gateway) is a web security product that protects your network against threats arising from the web such as viruses and ...
PMcAfeeWebGatewayResources
Resources for PMcAfeeWebGatewayResources The following describes all resources included for this package. If you modify a resource, we suggest adding a comment in ...
PMcAfeeWebGatewayTestPlan
McAfee Web Gateway User Acceptance Test Plan Use Case Acceptance Testing This test plan targets: * to define the acceptance test criteria for the System Acceptance ...
PMcAfeeePOBaseTestPlan
McAfee ePO Base User Acceptance Test Plan Note: This test plan is incomplete at this time. Use Case Acceptance Testing This test plan targets: * to define the ...
r2 - 16 May 2018 - 19:18 by EstebanHerrera
PMicroFocusAtallaHSM
P Micro Focus Atalla HSM This package contains resources that identifies critical events originating from Micro Focus Atalla HSM Applicances. It also contains rule ...
PMicroFocusAtallaHSMResources
Resources for PMicroFocusAtallaHSMResources The following describes all resources included in this package. If you modify a resource, we suggest adding a comment in ...
PMicroFocusAtallaHSMTestPlan
P Micro Focus Atalla HSM Test Plan . Testing Approach Once the connectors are configured, events start reporting to ESM and the package is installed, verify the events ...
PMicroFocusDNSMalwareAnalytics
Micro Focus DNS Malware Analytics Micro Focus Security ArcSight DNS Malware Analytics (DMA), a security analytics solution, detects malware infected hosts and endpoints ...
PMicrosoftAzure
Microsoft Azure The P Microsoft Azure package offers an easy way to monitor entities on Active Directory Azure cloud environment, likewise provides the flexibility ...
r7 - 26 Apr 2019 - 18:21 by EstebanHerrera
PMicrosoftDHCP
Windows DHCP The P Microsoft DHCP package offers an easy way to monitor address assignment on the network, likewise provides the flexibility to be integrated with ...
r13 - 18 Sep 2018 - 22:54 by EstebanHerrera
PMicrosoftDHCPResources
Main.EstebanHerrera 09 Jul 2018 PMicrosoftDHCPResources Packages Resource Name Path Description P Microsoft DHCP /All Packages/ArcSight Activate ...
r5 - 21 Aug 2018 - 18:39 by EstebanHerrera
PMicrosoftDHCPTestPlan
Microsoft DHCP Product Package User Acceptance Test Plan Use Case Acceptance Testing This test plan targets: * to define the acceptance test criteria for the System ...
r4 - 23 Jul 2018 - 17:29 by EstebanHerrera
PMicrosoftPowerShell
P Microsoft PowerShell This Package supports the monitoring of events received through PowerShell scripts. It helps to identify if any attacks are launched via PowerShell ...
PMicrosoftPowerShellResources
Resources for P Microsoft PowerShell Packages Resource Name Path Description P Windows PowerShell /All Packages/ArcSight Activate This package provides ...
PMicrosoftPowerShellTestPlan
P Microsoft PowerShell User Acceptance Test Plan Use Case Acceptance Testing This test plan targets: * to define the acceptance test criteria for the System Acceptance ...
PMicrosoftTestPlan
Main.EstebanHerrera 23 Oct 2018 Microsoft Azure Product Package User Acceptance Test Plan Use Case Acceptance Testing This test plan targets: * to define the ...
r2 - 28 Nov 2018 - 20:49 by EstebanHerrera
PMicrosoftWindows
P Microsoft Windows Introduction The P Microsoft Windows package offers an easy way to monitor both host and entity related individual incidents. Furthermore, it ...
r45 - 28 Mar 2019 - 20:41 by EstebanHerrera
PMicrosoftWindowsResources
Resources for PMicrosoftWindowsResources The following describes all resources included for this package. If you modify a resource, we suggest adding a comment in ...
r14 - 28 Mar 2019 - 20:46 by EstebanHerrera
PMicrosoftWindowsTestPlan
Microsoft Windows User Acceptance Test Plan Note: This test plan does not provide a complete set of test cases. The raw or .events are not provided at this time. ...
r12 - 06 May 2019 - 20:25 by EstebanHerrera
PMobileIronSentry
P Mobile Iron Sentry Mobile Iron Sentry is an in line gateway that manages, encrypts, and secures traffic between the mobile device and back end enterprise systems ...
PMobileIronSentryResources
Packages Resource Name Path Description P Mobile Iron Sentry /All Packages/ArcSight Activate Active Channels Resource Name Path Description ...
PMobileIronSentryTestPlan
Mobile Iron Sentry User Acceptance Test Plan Note: This test plan contains raw events of the product attached Use Case Acceptance Testing This test plan targets: ...
PPaloAltoNetworks
Palo Alto Networks Palo alto Networks provides highly effective and innovative cybersecurity across clouds, networks, and mobile devices. This product specific package ...
PPingDirectory
Ping Identity Directory Server Main User Stories This package contains a set of filters to catch the different event types, but we have not yet developed use cases ...
PProFTPDConnectorConfigurationGuide
P ProFTPD Product Package Brief description of package, including history, main authors, benefits, use cases and overview of implementation ProFTPD is an FTP server ...
PProofpointEnterpriseProtection
P Proofpoint Enterprise Protection This Product package contains filters, rules, and other content to work with Proofpoint Enterprise Protection product events Main ...
PProofpointEnterpriseProtectionResources
Resources for P Proofpoint Enterprise Protection The following describes all resources included for this package. Packages Resource Name Path Description ...
PProofpointEnterpriseProtectionTestPlan
P Proofpoint Enterprise Protection User Acceptance Test Plan Note: Test events provided in this test plan. Use Case Acceptance Testing This test plan targets: ...
PPulseSecure
P Pulse Secure Product Package The is a basic package for handling Pulse Secure events, with the content relating to authentication and sessions. Author: Beirne Konarski ...
PPulseSecureResources
Packages Resource Name Path Description P Pulse Secure Pulse Connect Secure /All Packages/ArcSight Activate/ Filters Resource Name Path Description ...
r2 - 21 Jun 2018 - 23:08 by RhydhamJoshiWiki
PRiverbedXirrus
P Riverbed Xirrus Riverbed Technology, Inc. is an American information technology company. Its products consist of software and hardware focused on network performance ...
PRiverbedXirrusResources
Resources for PRiverbedXirrus The following describes all resources included for this package. If you modify a resource, we suggest adding a comment in the Description ...
PRiverbedXirrusTestPlan
Riverbed Xirrus Test Plan * Riverbed Xirrus UserAcceptance Test Plan * User Acceptance Testing * Testing Approach * Responsibilities for each ...
PSnort
P Snort This package handles the use cases for Snort IDS. If you are using the new Cisco FireSIGHT Syslog connector, please use the P Sourcefire package, instead. ...
PSnortResources
Resources for PSnortResources The following describes all resources included for this package. If you modify a resource, we suggest adding a comment in the Description ...
PSnortTestPlan
C Security System Monitoring User Acceptance Test Plan Note: There are no test events provided in this test plan. Use Case Acceptance Testing This test plan targets ...
r4 - 16 May 2018 - 20:18 by EstebanHerrera
PSourcefire
P Sourcefire The Sourcefire Activate product package covers events coming from the SmartConnector for ArcSight CEF Cisco FireSIGHT Syslog. These events are different ...
PSourcefireFireSIGHT
PSourcefireFireSIGHT The Sourcefire FireSIGHT Activate product package covers events coming from the SmartConnector for ArcSight CEF Cisco FireSIGHT Syslog. These ...
PSourcefireFireSIGHTResources
Resources for PSourcefireFireSIGHTResources The following describes all resources included for this package. If you modify a resource, we suggest adding a comment ...
PSourcefireResources
Resources for PSourcefireResources The following describes all resources included for this package. If you modify a resource, we suggest adding a comment in the Description ...
PSourcefireResourcesTemp
Resources for PSourcefireResourcesTemp The following describes all resources included for this package. If you modify a resource, we suggest adding a comment in the ...
PSymantecEndpointEncryption
P Symantec Endpoint Encryption This package identifies cryptography and management events reported by Symantec Endpoint Encryption product. Authors: Rhydham Joshi ...
PSymantecEndpointEncryptionResources
Resources for P Symantec Endpoint Encryption The following describes all resources included in this package. Packages Resource Name Path Description P Symantec ...
PSymantecEndpointEncryptionTestPlan
P Symantec Endpoint Encryption Test Plan . Testing Approach This package can be tested by pushing the real events to the ESM by creating the environment, configuring ...
PSymantecEndpointProtection
P Symantec EndPoint Protection Product Package Note: This documentation has been modified for the upcoming 1.2.0.0 version of the package. Click here to read the ...
PSymantecEndpointProtectionResources
Resources for PSymantecEndpointProtectionResources The following describes all resources included for this package. If you modify a resource, we suggest adding a comment ...
PSymantecEndpointProtectionTestPlan
P Symantec EndPoint Protection Package Test Plan Use Case Acceptance Testing This test plan targets: * to define the acceptance test criteria for the System Acceptance ...
PThycoticSecretServer
P Thycotic Secret Server Privileged accounts and passwords are high value targets for hackers. Thycotic Secret Server is one of the password protection and management ...
PThycoticSecretServerResources
Resources for PThycoticSecretServerResources The following describes all resources included for this package. If you modify a resource, we suggest adding a comment ...
PThycoticSecretServerTestPlan
Thycotic Secret Server Test Plan User Acceptance Testing This test plan targets: * To define the test criteria for the User Acceptance Test * To define the ...
PTippingPointIpsTestPlan
TippingPoint IPS User Acceptance Test Plan User Acceptance Testing This test plan targets: * To define the test criteria for the User Acceptance Test * To define ...
PTippingPointSmsUnityOne
P Tipping Point SMS and UnityOne Introduction TippingPoint Security Management System (SMS) provides a global vision and security policy control for large scale deployments ...
PTippingPointSmsUnityOneResources
Resources for PTippingPointSmsUnityOneResources The following describes all resources included for this package. If you modify a resource, we suggest adding a comment ...
PTrendMicroControlManager
Trend Micro Control Manager Trend Micro Control Manager protects endpoints, on or off the corporate network, against malware, Trojans, worms, spyware, ransomware ...
PTrendMicroControlManagerBase
P Trend Micro Control Manager Base This package provides support for use cases for Trend Micro Products managed by Trend Micro Control Manager. Main User Stories ...
PTrendMicroControlManagerBaseResources
Resources for PTrendMicroControlManagerBaseResources The following describes all resources included for this package. If you modify a resource, we suggest adding a ...
PTrendMicroControlManagerBaseTestPlan
Trend Micro Control Manager Base User Acceptance Test Plan Note: This test plan is incomplete at this time. Use Case Acceptance Testing This test plan targets: ...
PTrendMicroControlManagerResources
Resources for PTrendMicroControlManagerResources The following describes all resources included for this package. If you modify a resource, we suggest adding a comment ...
PTrendMicroControlManagerTestPlan
Trend Micro Control Manager Use Case Acceptance Testing This test plan targets: * to define the acceptance test criteria for the System Acceptance Test * ...
PTrendMicroIMSTestPlan
Trend Micro InterScan Messaging Security User Acceptance Test Plan Note: This test plan is incomplete at this time. Use Case Acceptance Testing This test plan targets ...
PTrendMicroInterScanMessagingSecurity
P Trend Micro InterScan Messaging Security This package handles the use cases for Trend Micro InterScan Messaging Security solution managed by Trend Micro Control ...
PTrendMicroInterScanMessagingSecurityResources
Resources for PTrendMicroInterScanMessagingSecurityResources The following describes all resources included for this package. If you modify a resource, we suggest ...
PTrendMicroOfficeScan
Trend Micro OfficeScan Main User Stories This package supports L1 Malware Monitoring Indicators and Warnings User Stories: * Resolved Malware Events * Quarantined ...
PTrendMicroOfficeScanResources
Resources for PTrendMicroOfficeScanResources The following describes all resources included for this package. If you modify a resource, we suggest adding a comment ...
PTrendMicroOfficeScanTestPlan
Trend Micro OfficeScan Use Case Acceptance Testing This test plan targets: * to define the acceptance test criteria for the System Acceptance Test * to define ...
PTrendMicroScanMail
P Trend Micro ScanMail This package handles the use cases for Trend Micro ScanMail solution managed by Trend Micro Control Manager. Main User Stories This package ...
PTrendMicroScanMailResources
Resources for PTrendMicroScanMailResources The following describes all resources included for this package. If you modify a resource, we suggest adding a comment in ...
PTrendMicroScanMailTestPlan
Trend Micro ScanMail User Acceptance Test Plan Note: This test plan is incomplete at this time. Use Case Acceptance Testing This test plan targets: * to define ...
PVMwareAirwatch
P VMware AirWatch Introduction Mobile device management (MDM) is a device lifecycle management technology that enables IT to deploy, configure, manage, support and ...
PVMwareAirwatchResources
Resources for P VMwareAirWatch The following describes all resources included for this package. If you modify a resource, we suggest adding a comment in the Description ...
PVMwareAirwatchTestPlan
VMware AirWatch User Acceptance Test Plan User Acceptance Testing This test plan targets: * To define the test criteria for the User Acceptance Test. * To define ...
PVoltageSecureData
P Voltage SecureData This package provides content for the Micro Focus/Voltage SecureData format preserving encryption and tokenization product. This page describes ...
PVoltageSecureDataTestPlan
P Voltage SecureData User Acceptance Test Plan Note: There are no test events provided in this test plan. Use Case Acceptance Testing This test plan targets: ...
PWebSenseWebSecurity
P WebSense Web Security This package provides content for WebSense Web Security that blocks web threats. Main Use Cases Below are the main use cases for this packages ...
r6 - 18 May 2018 - 18:24 by EstebanHerrera
PWebSenseWebSecurityResources
Resources for PWebSenseWebSecurityResources The following describes all resources included for this package. If you modify a resource, we suggest adding a comment ...
PWebSenseWebSecurityTestPlan
P WebSense Web Security User Acceptance Test Plan Note: There are no test events provided in this test plan. Use Case Acceptance Testing This test plan targets: ...
PackageTypesTemplate
INSERT PACKAGE TYPE NAME Package Type Detail Package Type Name: INSERT NAME OF PACKAGE TYPE: Package Type Prefix: "INSERT 1 or 2 CHARACTER PREFIX FOR THIS PACKAGE ...
PackagesResourcesAWSVPCFlows
Resources for AWS VPC Flows The following describes all resources included for this package. If you modify a resource, we suggest adding a comment in the Description ...
r8 - 05 Jun 2019 - 17:22 by EstebanHerrera
PackagesResourcesCISCORouter
Resources for PackagesResourcesCISCORouter The following describes all resources included for this package. If you modify a resource, we suggest adding a comment in ...
r2 - 23 Aug 2019 - 13:34 by EstebanHerrera
PackagesResourcesTemplate
Resources for Packages The following describes all resources included for this package. If you modify a resource, we suggest adding a comment in the Description field ...
PackagesTemplate
Package Name Brief description of package, including history, main authors, benefits, use cases and overview of implementation Main Use Cases Below are the main use ...
PerimeterAndNetworkMonitoringMigrationForL1AndL2
Perimeter and Network Monitoring Migration for L1 and L2 Brief description of package, including history, main authors, benefits, use cases and overview of implementation ...
PerimeterAndNetworkMonitoringMigrationForL1ONLY
Perimeter and Network Monitoring Migration for L1 ONLY Brief description of package, including history, main authors, benefits, use cases and overview of implementation ...
ProFTPDConnectorConfigurationGuideResources
Resources for ProFTPDConnectorConfigurationGuideResources The following describes all resources included for this package. If you modify a resource, we suggest adding ...
ProductPackages
Product Packages Product Packages Detail Package Type Name: Product Packages Package Type Prefix: "P" In the Data Fusion model, a Product Package is specific to one ...
PublishPluginHistory
Publishing Details Publisher: GenevaCapos Date: 23 Jan 2017 23:34 Dir: /var/lib/foswiki/pub/publish/ URL: http://50.112.44.130:8888/foswiki/pub/publish// Web(s) ...
RedhatLinuxL1ConfigurationGuide
Red Hat Linux Indicators and Warnings Installation Guide Prerequisites Ensure the following is complete: * Devices are configured as per the device configuration ...
NEW - 24 Feb 2015 - 06:25 by FoswikiAdmin
RuleBestPractices
Rule Best Practices There are four critical areas of the rules editor: the rule type (under the Attributes tab), Conditions, Aggregation, and Actions. Rule Types ...
SnortL1Installation
Snort L1 Indicators and Warnings Installation Guide Prerequisites Ensure the following is complete: * Devices are configured as per the device configuration guide ...
SourcefireTestPlans
Sourcefire User Acceptance Test Plan User Acceptance Testing This test plan targets: * To define the test criteria for the User Acceptance Test * To define ...
TActivateCustomerBaseTemplates
Activate Customer Base Templates This package provides pre built groups for all resources for your private Activate content. It is designed to work with the HPE provided ...
TActivateTemplates
T Activate Templates Activate Templates are for content developers who wish to easily package their content. There are three types: 1 ArcSight Activate templates ...
TActivateTemplatesForDevelopers
T Activate Templates for Developers Activate Templates for Developers Packages Detail Package Type Name: Activate Templates for Developers Package Type Prefix: "T ...
TActivateTemplatesForMSSPs
Activate Template for MSSP Environments Introduction In a Managed Security Services Provider (MSSP) environment, clients will require many different use cases and ...
TArcSightActivateTemplates
T ArcSight Activate Templates There are multiple individual template packages in this package. The templates are designed to exclude other ArcSight ESM resources and ...
TestPlansThreatTracking
Threat Tracking User Acceptance Test Plan Use Case Acceptance Testing This test plan targets: * to define the acceptance test criteria for the System Acceptance ...
TippingPointL1Installation
TippingPoint Unity One IPS L1 Indicators and Warnings Installation Guide Introduction The installation of the Activate content is now being done through a wrapper ...
TippingPointSMSTestPlans
TippingPoint IPS User Acceptance Test Plan User Acceptance Testing This test plan targets: * To define the test criteria for the User Acceptance Test * To define ...
VoltageSecureDataResources
Resources for VoltageSecureDataResources The following describes all resources included for this package. If you modify a resource, we suggest adding a comment in ...
WCaseTrackingAndEscalation
W Case Tracking and Escalation This is an updated version of the old Workflow resources that shipped with ArcSight ESM prior to ESM v6.9.0. Main Use Cases Below are ...
WWorkflowEnhancements
W Workflow Enhancements Workflow Enhancements Packages Detail Package Type Name: Workflow Enhancements Package Type Prefix: "W" These packages are for adding enhancement ...
WebHome
%IF{"$WEBSUMMARY = ''" then=" "}% This web contains the canonical new version of the ArcSight Activate web. If you are writing customer facing Activate documentation ...
WebLeftBar
" warn="off"}% * Activate Home Page * Why Activate? * Problems Activate Solves * Sample Use Cases * Principal Benefits ...
WebSenseL1Installation
Websense Web Security L1 Indicators and Warnings Installation Guide Introduction The installation of the Activate content is now being done through a wrapper. We ...
WhyActivate
Why Activate? Fill in this stub with a general introduction to the Activate value proposition, possibly including but not limited to: * Content Development benefits ...
WhyPrimaryPackages
Give concrete examples of the benefits described previously using the Framework, L1 and L2 packages. Main.GeorgeBoitano 21 Jan 2016
WhyProblemsActivateSolves
Problems Activate Solves C makes it easy to shoot yourself in the foot; C makes it harder, but when you do it blows your whole leg off. Bjarne Stroustrup, creator ...
WhySampleUseCases
Sample Use Cases Fill in this stub with sample use cases from the various packages and framework, including links to the relevant pages. Focus on the value to the ...
Number of topics: 336
 
This site is powered by FoswikiCopyright &© by the contributing authors. All material on this collaboration platform is the property of the contributing authors.
Ideas, requests, problems regarding Foswiki? Send feedback