Apache Web Server

Version: Apache Web Server v2.4.6 and above.

Apache is the most widely used web server software that accepts directory (HTTP) requests from website owners (developers and even hosting providers) and delivers the desired information, like files and Web pages. Apache is an open-source, cross-platform that runs in the background under an appropriate operating system. It offers services to other connected applications, including client web browsers, and supports multitasking.

Netsurion Open XDR manages logs retrieved from Apache web server. The reports, dashboard, and saved searches in Netsurion Open XDR are enhanced by capturing important and critical activities of Apache Web Server.

The following are the key Data Source Integration available in Netsurion Open XDR.

Reports

TypeNameDescription
SecurityApache Web Server – Error trafficProvides detailed information on traffic created by http error response code. This report makes easier to sort through the client request which has been treated as either client error or server error.
SecurityApache Web Server – Success trafficProvides detailed information on successful traffic request.
SecurityApache Web Server – Backup or auth finderProvides information of users who are trying to search for authentication pages or shows the attempts to identify backup copies of discovered files by requesting it in different combinations.
SecurityApache Web Server – Directory traversalProvides information of the users and requested resources whose access are restricted.
SecurityApache Web Server – SQL injectionProvides information about the attackers who are trying to do SQL injection on the Apache web server. It also provides information about the URL on which the attacker is trying to execute suspicious SQL queries which we can correlate with SQL syntax error to confirm whether it is a possible SQL injection or not.

Dashboards

TypeNameDescription
SecurityApache Web Server – Non-standard http methodsDisplays the non-standard http request received by the respective client.
SecurityApache Web Server – Http responseDisplays the http response code which makes easier to do the monitoring on client’s respective requests.
SecurityApache Web Server – Traffic errors by clientDisplays the traffic generated by error codes and displays what object has been requested by which client.

Saved Searches

TypeNameDescription
SecurityApache Web Server – Success traffic logsProvides detailed information on successful traffic request.
SecurityApache Web Server – Error traffic logsProvides the information about traffic created by http error response code. This report makes it easier to sort through the client request which is treated as either client error or server error.

Documentation

The configuration details in this guide are consistent with Netsurion Open XDR 9.3 and later, Apache Web Server.

Download Integration Guide for configuration instructions and more information.