ESET Antivirus

Version: Latest business version of ESET Antivirus (Endpoint Protection).

ESET Antivirus is the most effective protection you can find to combat today’s huge volumes of Internet and email threats. It provides comprehensive antivirus and anti-spyware protection without affecting your computer’s performance. Using advanced ThreatSense technology, ESET Antivirus proactively protects you from new attacks, even during the critical first hours when other vendors’ products aren’t aware the attack even exists.

Netsurion Open XDR monitors detected threat activity, action taken against threat activity, quarantined malwares, firewall events, HIPS alerts etc and generates flex reports, flex dashboards and alerts for the same.

Netsurion Data Source Integration for ESET Antivirus allows you to monitor the following components:-

  • Security – Detected threat activity, HIPS alerts and quarantined threat activity.
  • Operation – Firewall allowed and denied traffics.
  • Compliance – User login and logout activities.

Once ESET Antivirus is configured to deliver events to Netsurion Open XDR Manager; alerts, dashboards and reports can be configured into Netsurion Open XDR.

The following are the key Data Source Integration available in Netsurion Open XDR.

Alerts

Type Name Description
Security ESET AV – Threat activities This alert is generated when a threat is detected by the ESET Endpoint Protection.
Security ESET AV – HIPS alerts This alert is generated when any IPS alert detected by ESET Endpoint Protection.
Security ESET AV – Quarantined events This alert is generated when ESET Endpoint Protection quarantines any detected malware.

Reports

Type Name Description
Security ESET AV – Threat activities This report provides details about all the threat that are detected by ESET Endpoint Protection.
Security ESET AV – HIPS alerts This report provides details about all the IPS alerts that are detected by the ESET Endpoint Protection.
Security ESET AV – Quarantined events This report provides details about all the detected malware when they are quarantined by the ESET Endpoint Protection.
Operations ESET AV – Firewall aggregated event This report provides details on all the firewall aggregated events including traffic allowed and denied events.
Compliance ESET AV – Login and logout activity This report provides details about all the login and logout activities.

Documentation

The configuration details are consistent with Netsurion Open XDR 8.x and later, latest business version of ESET Antivirus (Endpoint Protection).

Download Integration Guide for configuration instructions and more information.