Powerful threat prediction, prevention, detection, and response along with compliance in a scalable, simple managed solution.
All-in-one networking solution that combines network connectivity, agility, security, and compliance in an affordable managed solution.
Accelerate business growth through our award-winning partner program.
Applies To: Windows PowerShell 3.0 and later
Windows PowerShell is a task automation and configuration management framework from Microsoft, consisting of a command-line shell and associated scripting language built on the .NET Framework. PowerShell comes in two versions: Console and Integrated Scripting Environment (ISE). PowerShell also features SSH like remote shell capability through Windows Remote Management (WinRM). EventTracker amasses and examines logs generated by PowerShell to help an administration to monitor remote session’s establishment and execution of rogue scripts or commands.
EventTracker Knowledge Pack for Windows PowerShell allows you to monitor the following components:-
Once Windows PowerShell is configured to deliver events to EventTracker Manager; alerts, reports and dashboards can be configured into EventTracker.
Some of the Knowledge Packs available in EventTracker are listed below. For more information, please refer Integration Guide.
Reports
Alerts
Alert
Report
The configuration details in this guide are consistent with EventTracker version 7.X and later,Windows PowerShell 3.0 and later
For more information, please refer to the Integration guide