Managed Threat Protection
Back
Managed Threat Protection
EventTracker

Powerful threat prediction, prevention, detection, and response along with compliance in a scalable, simple managed solution.
- Solution Overview Managed Threat Protection
- Platform Details Threat Protection Platform
Key Capabilities
- Security Operations Center
- SIEM
- Endpoint Security
- Threat Detection & Response
- Intrusion Detection
- Vulnerability Management
- Threat Hunting
- Ransomware Protection
- Microsoft 365 Security
- Regulatory Compliance
Business Applications
- Private Equity
- Banking & Financial Services
- Healthcare & Pharmaceutical
- Retail & Hospitality
Secure Edge Networking
Back
Secure Edge Networking
BranchSDO

All-in-one networking solution that combines network connectivity, agility, security, and compliance in an affordable managed solution.
- Solution Overview Managed Secure Edge Networking
- Platform Details Edge Networking Platform
Key Capabilities
- Network Operations Center
- Secure SD-WAN
- Next-Gen Firewall
- Network Threat Response
- Network Segmentation
- Cellular Failover
- Wi-Fi Management
- PCI DSS Compliance
Business Applications
- Point-of-Sale Security
- Restaurant & Hospitality
- Retail & C-Store
- Branch Offices
Partners
Back
Partners
Partner Program Overview

Accelerate business growth through our award-winning partner program.
- Partner Program Overview
- Managed Service Provider Program
Insights
Back
Insights
Insights
Company
Back
Company
About Us

myNetsurion
BranchSDO Support
EventTracker Support

Knowledge Packs

Documentation
- Latest Version Docs
- Product Guides
Knowledge Packs
Software Updates
Supported Devices
Knowledgebase
Online Training
Online Help
- EventTracker 9.x
FAQs
- Product FAQs
- EventTracker Events

HomeKnowledge Packs Microsoft Antimalware

Microsoft Antimalware

OverviewResources

Applies To: Microsoft Antimalware for Microsoft Azure.

Overview

Microsoft Antimalware is an antivirus software (AV) product that fights malware (malicious software), including computer viruses, spyware, Trojan horses and rootkits. Microsoft Antimalware Service provides real-time protection, constantly monitoring activities on the computer and scanning new files as they are downloaded or created and disabling detected threats.

EventTracker monitors detected malware activity, action taken against malware activity, Quarantined malware restored, Removed history of malware and service status and generates flex reports, flex dashboards and alerts for rogue access point detected and system state changed.

EventTracker Knowledge Pack for Microsoft Antimalware allows you to monitor the following components:-

Security - Detected malware activity and action taken against malware activity.
Operation - Configuration changes and status of services.

/

Once Microsoft Antimalware is configured to deliver events to EventTracker Manager; alerts, dashboards and reports can be configured into EventTracker.

Some of the Knowledge Packs available in EventTracker are listed below. For more information please refer Integration Guide.

Operations

Reports

MS Antimalware-Configuration changes: This report provides details about all the configuration changes that are done.
MS Antimalware-Service stopped: This report provides details about all the services that are stopped.

Security

Alerts

MS Antimalware-Detected malware activity: This alert is generated when any malware activity is detected.
MS Antimalware-Action taken against malware activity: This alert is generated when an action is taken against the detected malware.
MS Antimalware-Quarantined malware restored: This alert is generated when a quarantined malware is restored.
MS Antimalware-Removed history of malware: This alert is generated when the malware history is removed or deleted.

Reports

MS Antimalware-Detected malware activity: This report provides details about all the malwares that are detected by Microsoft Antimalware.
MS Antimalware-Action taken against malware activity: This report provides details about all the action taken against malware activities.
MS Antimalware-Quarantined malware restored: This report provides details on all the quarantined malwares that were restored.
MS Antimalware-Removed history of malware: This report provides details about the malware history that was removed.

Scope

The configuration details in this guide are consistent with EventTracker version 8.x and later, Microsoft Antimalware for Microsoft Azure.

Documentation:

For more information please refer to the Integration guide

NEW

April 2022

Microsoft Defender
Azure App Service
Azure Kubernetes Service
Azure Storage
SQL Server on Azure

February 2022

Cisco Email and Web Security
TrapX DeceptionGrid

December 2021

Symantec Endpoint Protection Cloud
Bitwarden Password Manager
Amazon ECR

This site uses cookies to store information on your computer. Some are essential to make our site work; others help us improve the user experience. By using the site, you consent to the placement of these cookies. Read our Privacy Statement to learn more.

I Accept

Contact Us

(713) 929-0200
BranchSDO Support
EventTracker Support
partners@netsurion.com
sales@netsurion.com

Partners

Partner Program Overview
Managed Service Provider Program
Partner Portal Login
Find a Partner

Quick Links

Why Netsurion?
Blog
Careers
Managed Threat Protection
Secure Edge Networking

Follow Us:

Stay in the Loop

Terms of Use
|
Privacy Policy
|
Soc 2 Type 2 Compliant
|
Descriptions of Services
|
Contact Us
|
Sitemap
|

Copyright © 2022 Netsurion. All rights reserved.