Our Solution
Back
OUR SOLUTION
Capabilities
Predict, prevent, detect, and respond
How It Works
People, platform, and process
Use Cases
By threat, environment, or industry
Talk to a Cybersecurity Advisor
See how we deliver managed threat protection
WHY NETSURION
Back
WHY NETSURION
Key Business Benefits
Powerful yet practical cybersecurity
Industry Leadership
Perennial recognition for innovation
Customer Success
Driven to be your trusted partner
Partners
Back
PARTNER PROGRAM OVERVIEW
Partner Program Benefits
Our solutions are built for service providers
Become a Partner
Grow your cybersecurity practice
Insights
Back
VIEW ALL INSIGHTS
Articles
Read the latest from our blog
SOC Catch of the Day
Real stories of threats we reel in daily
Cybersecurity Q&A Videos
Answering your toughest cybersecurity queries
Webcasts & Events
Join us in-person or online to learn more
Company
Back
MEET NETSURION
Leadership
Meet our management team
News
Press releases and news stories
Careers
Check out our current openings
Contact Us
Talks to sales or support
MyNetsurion
Support
Partner Portal
Contact Us
Knowledge Packs
Documentation
Latest Version Docs
Product Guides
Knowledge Packs
Software Updates
Version 9.x
Version 8.x
Version 7.x
Version 6.x
Supported Devices
Online Training
Online Help
EventTracker 9.x
Home
Knowledge Packs
BlueCoat Content Analysis
BlueCoat Content Analysis
Overview
Resources
Applies To
: Bluecoat Content Analysis 1.3 or above
Overview
Bluecoat Content Analysis
is a next-generation anti-virus, malware, and spyware detection system. Content Analysis includes the features like Malware and Antivirus scanning, Static Analysis services from Cylance, File Reputation Service, Manual File Blacklist and Whitelist, Sandbox integration with Blue Coat's Malware Analysis.
EventTracker
is an enterprise-class platform that seamlessly combines SIEM, Log Management, File Integrity Monitoring, machine analytics and so forth.
EventTracker Knowledge Pack for
Bluecoat Content Analysis
allows you to monitor the following components: -
Security
- Threat detection
Operation
- File scan results
Previous
Next
Once
Bluecoat Content Analysis
is configured to deliver events to EventTracker Manager; Alerts, Knowledge objects and reports can be configured into EventTracker.
Some of the Knowledge Packs available in EventTracker are listed below. For more information, please refer Integration Guide.
Security
Alerts
Bluecoat Content Analysis: Threat detected –
This alert generates when threats are detected while scanning.
Reports
Bluecoat Content Analysis- Threat detected –
This report gives the information about threats detected while scanning.
Operation
Alerts
Bluecoat Content Analysis: File blocked –
This alert generates when the files are blocked by antivirus.
Reports
Bluecoat Content Analysis - File activity –
This report gives the information about file scan result, reputation and the action taken.
Scope
The configuration details in this guide are consistent with EventTracker version 9.x and later, and
Bluecoat Content Analysis 1.3 or above.
Documentation
For more information, please refer to the
Bluecoat Content Analysis
Integration guide
.