Wider attack surface coverage powered by hundreds of integrations and deeper threat visibility powered by thousands of detections.
Version: FireEye Network Security and Forensics (NX)
The FireEye Network Security and Forensics (NX) is an effective cyber threat protection solution. It helps organizations minimize the risk of costly breaches by accurately detecting and immediately stopping advanced, targeted and other evasive attacks hiding in Internet traffic.
Netsurion's Open XDR platform integrates with FireEye NX, collects log from FireEye NX and creates detailed reports, alerts, dashboards and saved searches. These attributes of Netsurion's Open XDR platform help users to view the critical and important information on a single platform.
Reports contain a detailed overview of events such as, malware object, indicating the presence of a file attachment with a malicious executable payload. It will also show web infection indicating an outbound connection to a website initiated by a web browser that was determined to be malicious.
Alerts are provided as soon as any critical event is triggered by the FireEye NX. With alerts, users will be able to get notifications about real time occurrences of events such as, suspicious file hash detection, or suspicious web URL detection, and any such activities.
Dashboards will display a graphical overview of all the malwares detected by FireEye NX, or Command and Control server connection, etc. These services will include information such as suspicious source IP address, source port, destination IP address, destination port, anomaly type, malware name, etc.
Once FireEye NX is configured to deliver events to Netsurion Manager, alerts, dashboards, and reports can be configured into Netsurion.
The configuration details are consistent with Netsurion version 9.x and later, and FireEye Network Security and Forensics (NX).
Download Integration Guide and How-to Guide for more information and to configuration instructions.