Webroot SecureAnywhere
Version: Webroot SecureAnywhere 9.x
Webroot SecureAnywhere Business Endpoint Protection provides a multi-vector advantage over other solutions, covering threats from email, web browsing, file attachments, hyperlinks, display ads, social media apps, and connected devices like USB drives.
Netsurion Open XDR manages logs retrieved from Webroot SecureAnywhere. The alerts, reports, dashboards, and saved searches in Netsurion Open XDR are enhanced by capturing important and critical activities in Webroot Business Endpoint Protection and DNS Protection.
The following are the key Data Source Integration available in Netsurion Open XDR.
Alerts
| Type | Name | Description |
|---|---|---|
| Security | Webroot SecureAnywhere – Threat detection | Generated whenever the threat is detected on endpoint. |
| Compliance | Webroot SecureAnywhere – Command executed | Generated whenever the command has been executed on endpoint. |
Reports
| Type | Name | Description |
|---|---|---|
| Security | Webroot SecureAnywhere – Malware detection | Provides the details about any malware or threats that are detected by Webroot. |
| Operational | Webroot SecureAnywhere – DNS blocked traffic requests | Provides the details of the contents that are being accessed by users who are blacklisted or blocked by Webroot. |
| Operational | Webroot SecureAnywhere – DNS allowed traffic requests | Provides the details of the contents that are being accessed by users who are whitelisted or allowed by Webroot. |
| Operational | Webroot SecureAnywhere – DNS traffic summary | Provides the details about DNS traffic summary of all endpoints monitored by Webroot. |
| Compliance | Webroot SecureAnywhere – Commands executed | Provides the details about commands which are executed by user on endpoint. |
Dashboards
| Type | Name | Description |
|---|---|---|
| Security | Webroot SecureAnywhere – Threat detected by hostname | Displays the data about threats detected by hostname. |
| Security | Webroot SecureAnywhere – Threat detected by signature | Displays the data about threats detected by signature. |
| Security | Webroot SecureAnywhere – Malware group by username | Displays the data of malware by username. |
| Operational | Webroot SecureAnywhere – Blocked DNS request by sitename | Displays the data about blocked DNS requests by site name. |
| Operational | Webroot SecureAnywhere – Web requests blocked by country | Displays the location of web request blocked by Webroot. |
Saved Searches
| Type | Name | Description |
|---|---|---|
| Security | Webroot SecureAnywhere – Malware Detection | Provides the details about any malware or threats that are detected by Webroot. |
| Operational | Webroot SecureAnywhere – DNS blocked traffic requests | Provides the details of the contents that are being accessed by users who are blacklisted or blocked by Webroot. |
| Operational | Webroot SecureAnywhere – DNS allowed traffic requests | Provides the details of the contents that are being accessed by users who are whitelisted or allowed by Webroot. |
| Operational | Webroot SecureAnywhere – DNS Traffic Summary | Provides the details about DNS traffic summary of all endpoints monitored by Webroot. |
| Compliance | Webroot SecureAnywhere – Commands Executed | Provides the details about commands which are executed by user on endpoint. |
Documentation
The configuration details are consistent with Netsurion Open XDR 9.3 and later, and Webroot SecureAnywhere.
Download Integration Guide for configuration instructions and more information.