Webroot SecureAnywhere

Version: Webroot SecureAnywhere 9.x

Webroot SecureAnywhere Business Endpoint Protection provides a multi-vector advantage over other solutions, covering threats from email, web browsing, file attachments, hyperlinks, display ads, social media apps, and connected devices like USB drives.

Netsurion Open XDR manages logs retrieved from Webroot SecureAnywhere. The alerts, reports, dashboards, and saved searches in Netsurion Open XDR are enhanced by capturing important and critical activities in Webroot Business Endpoint Protection and DNS Protection.

The following are the key Data Source Integration available in Netsurion Open XDR.

Alerts

TypeNameDescription
SecurityWebroot SecureAnywhere – Threat detectionGenerated whenever the threat is detected on endpoint.
ComplianceWebroot SecureAnywhere – Command executedGenerated whenever the command has been executed on endpoint.

Reports

TypeNameDescription
SecurityWebroot SecureAnywhere – Malware detectionProvides the details about any malware or threats that are detected by Webroot.
OperationalWebroot SecureAnywhere – DNS blocked traffic requestsProvides the details of the contents that are being accessed by users who are blacklisted or blocked by Webroot.
OperationalWebroot SecureAnywhere – DNS allowed traffic requestsProvides the details of the contents that are being accessed by users who are whitelisted or allowed by Webroot.
OperationalWebroot SecureAnywhere – DNS traffic summaryProvides the details about DNS traffic summary of all endpoints monitored by Webroot.
ComplianceWebroot SecureAnywhere – Commands executedProvides the details about commands which are executed by user on endpoint.

Dashboards

TypeNameDescription
SecurityWebroot SecureAnywhere – Threat detected by hostnameDisplays the data about threats detected by hostname.
SecurityWebroot SecureAnywhere – Threat detected by signatureDisplays the data about threats detected by signature.
SecurityWebroot SecureAnywhere – Malware group by usernameDisplays the data of malware by username.
OperationalWebroot SecureAnywhere – Blocked DNS request by sitenameDisplays the data about blocked DNS requests by site name.
OperationalWebroot SecureAnywhere – Web requests blocked by countryDisplays the location of web request blocked by Webroot.

Saved Searches

TypeNameDescription
SecurityWebroot SecureAnywhere – Malware DetectionProvides the details about any malware or threats that are detected by Webroot.
OperationalWebroot SecureAnywhere – DNS blocked traffic requestsProvides the details of the contents that are being accessed by users who are blacklisted or blocked by Webroot.
OperationalWebroot SecureAnywhere – DNS allowed traffic requestsProvides the details of the contents that are being accessed by users who are whitelisted or allowed by Webroot.
OperationalWebroot SecureAnywhere – DNS Traffic SummaryProvides the details about DNS traffic summary of all endpoints monitored by Webroot.
ComplianceWebroot SecureAnywhere – Commands ExecutedProvides the details about commands which are executed by user on endpoint.

Documentation

The configuration details are consistent with Netsurion Open XDR 9.3 and later, and Webroot SecureAnywhere.

Download Integration Guide for configuration instructions and more information.