Netsurion Endpoint Security
Version: Netsurion Endpoint Security
Netsurion Endpoint Security provides a predictive threat prevention platform by applying deep learning with its advanced artificial intelligences to cybersecurity.
Its on-device solution protects against zero-day threats and APT attacks with unmatched accuracy. It safeguards the enterprise’s endpoints and mobile devices against threats on any infrastructure and provides protection against unknown and evasive cyber-attacks.
Netsurion’s Open XDR platform helps to monitor events from Netsurion Endpoint Security. Its dashboard, alerts and reports help to analyse the attacks/virus detected on the systems, changes in polices, login failure, non-compliance events and inform about the system and its activities.
Alerts trigger when any threat/virus or login failure on console is detected.
Netsurion data source integration for Netsurion Endpoint Security allows you to monitor the following components:
- Security– Threat Detected, Login Failure, Security Event Prevented
- Operation – Administrator Management
- Compliance – Login and Logout Activity, Non-compliance events
Some of the Data Source Integrations available in Netsurion are listed below.
Alerts
| Type | Name | Description |
|---|---|---|
| Security | Netsurion Endpoint Security – Login Failed | This alert is generated when login failure is detected in Netsurion Endpoint Security. |
| Security | Netsurion Endpoint Security – Threat Detected | This alert is generated when threat/virus is detected. |
| Security | Netsurion Endpoint Security – Threat Prevented | This alert is generated when threat is prevented. |
| Compliance | Netsurion Endpoint Security – Non-Compliance Events | This alert is generated when non-compliance event is detected. |
Reports
| Type | Name | Description |
|---|---|---|
| Security | Netsurion Endpoint Security – Threat Activity Report | This report provides information related to any attack or malware/virus detected by Netsurion Endpoint Security. Report contains source IP, host name, filename, filepath, filetype, threat type and other information for further analysis. |
| Operations | Netsurion Endpoint Security – Administrator Activity Report | This report provides information related to any attack or malware/virus prevented by Netsurion Endpoint Security. Report contains source IP, host name, filename, filepath, filetype, threat type and other information for further analysis. |
| Compliance | Netsurion Endpoint Security – Login Activity Report | This report provides information related to all the login and logout activity detected in Netsurion Endpoint Security. Report contains username, source IP and activity details with other information. |
Documentation
The configuration details are consistent with Netsurion version 9.2x and later, and Netsurion Endpoint Security.
Download Integration Guide and How-to Guide for more information and to configuration instructions.