Windows PowerShell Integration

Version: Windows PowerShell 3.0 and later

Windows PowerShell is a task automation and configuration management framework from Microsoft, consisting of a command-line shell and associated scripting language built on the .NET Framework. PowerShell comes in two versions: Console and Integrated Scripting Environment (ISE). Windows Remote Management (WinRM) allows for SSH-like remote shell capability through PowerShell. Netsurion Open XDR amasses and examines logs generated by PowerShell to help an administrator monitor remote sessions for rogue scripts or commands.

Netsurion Data Source Integration for Windows PowerShell allows you to monitor the following components:-

Operations – Script or command execution locally or remotely
Security – Script or command execution errors, remote session creation
Compliance – Remote session user authentication attempts

Once Windows PowerShell is configured to deliver events to Netsurion Open XDR; alerts, reports and dashboards can be configured into Netsurion Open XDR.

To take advantage of this data source integration and to learn more about alerts, reports, and dashboards, contact your Technical Account Manager (TAM). If you are not currently a Netsurion customer or partner, contact us to learn more.

24X7 SOC-AS-A-SERVICE

OPEN XDR PLATFORM

USE CASES

WHY NETSURION

PARTNERS

ALL CYBERSECURITY INSIGHTS

Level up your cybersecurity!

ABOUT NETSURION

XDR Hot Company

Next-Gen MDR Service

Best MDR Solution

Windows PowerShell