Carbon Black(Cb) Protection

Version: Cb Protection Application Control for Servers & Critical Systems

Carbon Black Protection (Cb Protection), formerly Bit9, is an application control product that allows departments to monitor and control application execution on systems. The best aspect of Cb Protection is its ability to hash out and quickly locate executables on all workstations and servers.

Netsurion Open XDR integrates Cb Protection logging through REST API and provides reports, knowledge objects and dashboards for all generated events. This helps tremendously searching for and weeding out known-bad and suspected-bad files from the network.

Netsurion Data Source Integration for Cb Protection allows you to monitor the following components:-

  • Security – All events generated on Cb Protection related to alerts, application certificates, file approvals etc.
  • Compliance – Keeping track of sensor updates, unapproved files and certificate usage.
  • Operation – Summary of application executions and user activity across the network.

Once Cb Protection is configured to deliver events to Netsurion Open XDR Manager; knowledge objects and reports can be configured into Netsurion Open XDR.

To take advantage of this data source integration and to learn more about alerts, reports, and dashboards, contact your Technical Account Manager (TAM). If you are not currently a Netsurion customer or partner, contact us to learn more.