Hi Dears,
I want to replicate my ESM Content from HQ to another ESM Disaster Recovery
I case of incidents, I could see my resources in ESM D isaster Recovery
What is best practice and steps should I follow to achieve that.
Regards,
Ha…
Hello Comunity, I am hoping someone could assist with a logic problem i am having. Overview I would like to create a rule that alerts me if a use has logged in outside of the hours of 06:00-18:00 and if they login on at any time during Saturday and Sunday…
Hello, I wish to find out when a user views/deletes/modifies the event viewer. I thought that this could be a pretty common use case and was wondering if anyone has any experience with this already? Just looking for starting points and any tips. Regards…
This is the official forum for discussing the Activate Customer Base Templates, as described in the ArcSight Activate Wiki . See the Activate Customer Base Template Activate Wiki page for additional details.
This is the official forum for discussing the basic ArcSight Activate L2-Data Security Monitoring - Encryption - Situational Awareness package, as described in the Activate Wiki .
Roadmap :
Data at Rest
Suspicious Encryption Activities …
This is the official forum for discussing the basic ArcSight Activate L1-Data Security Monitoring - Encryption - Indicators and Warnings package, as described in the Activate Wiki .
Roadmap:
Below are the initial use case and user story ideas…
Unfortunately, /All Fields/ArcSight Activate/Core/Field Manipulation/Convert Case/dcString1 global variable (GV) disappeared in one of the recent updates.
Here is a package with the missing GV.
We will be posting Activate Base 2.5.0.0 soon, but…
This is the official forum for discussing the ArcSight Activate L2-User Monitoring - Situational Awareness package, as described in the Activate Wiki .
This is the official forum for discussing the ArcSight Activate L1-User Monitoring - Indicators and Warnings package, as described in the Activate Wiki .
This is the official forum for discussing the basic ArcSight Activate L2-Host Monitoring - Situational Awareness package, as described in the Activate Wiki .
This is the official forum for discussing the basic ArcSight Activate L1-Host Monitoring - Indicators and Warnings package, as described in the Activate Wiki .
This is the official forum for discussing the basic ArcSight Activate L2-Threat Intelligence - Situational Awareness package, as described in the Activate Wiki .
Version 1.1.0.0 TI: (L2-Threat_Intelligence_-_Situational_Awareness_1.1.0.0.arb)
New…
This is the official forum for discussing the basic ArcSight Activate L1-Threat Intelligence - Indicators and Warnings package, as described in the Activate Wiki .
Version 1.1.0.0 TI: (L1-Threat_Intelligence_-_Indicators_and_Warnings_1.1.0.0.arb)
…
This is the official forum for discussing the basic ArcSight Activate Templates, as described in the Activate Wiki . See T-Activate Templates for Developers for additional details and other templates (planned).
This is the official forum for the discussion of the L2-Perimeter Monitoring - Situational Awareness package.
This content is coming soon!
The installation/update package will be available from the ArcSight Marketplace. All new and updated Activate…
This is the official forum for the discussion of the L1-Perimeter Monitoring - Indicators and Warnings package.
The installation/update package will be available from the ArcSight Marketplace. All new and updated Activate Framework packages will be…
This is the official forum for the discussion of the L2-Network Monitoring - Situational Awareness package.
The installation/update package is available from the ArcSight Marketplace. All new and updated Activate Framework packages is available on the…
This is the official forum for the discussion of the L1-Network Monitoring - Indicators and Warnings package.
The installation/update package will be available from the ArcSight Marketplace. All new and updated Activate Framework packages will be…