L3-Base - Threat and Impact Analysis

181214

Micro Focus Micro Focus Community

Micro Focus | Micro Focus Community

This package contains the supporting resources (active lists and rules) for tracking the activity of systems, user accounts, service accounts, system accounts, etc., across the ArcSight Attack Life Cycle phases for this method.
109 downloads

Description

The Threat and Impact Analysis package supports the Level 3 - Threat Refinement (in Activate terms, Level 3 - Impact and Threat Analysis). Here we track the events for attacker and targets, systems and entities, across the ArcSight Attack Life Cycle. We also track the states of systems and entities of interest. Finally, we track activity of systems based on activity seen by or affecting them across the attack life cycle or based on their state. In some cases, as with the use cases provided by this base package, the use cases and user stories are based on correlation events across multiple Defense Monitoring in Depth layers. Other L3 use cases are specific to a DMiD layer.

Minimum Requirements

Releases

Release
Size
Date
L3-Base - Threat and Impact Analysis 0.1.0.1
155.3 KB
  |  
Aug 15, 2018
More info Less info
Product Compatibility
ESM
Version 6.8 · 6.9.1 · 6.11.0
Version 7.0
Release Notes

Micro Focus rebranding changes.

Languages
English
L3-Base-Threat and Impact Analysis 0.1.0.0
149.7 KB
  |  
Jul 6, 2018
More info Less info
Product Compatibility
ESM
Version 6.8 · 6.9.1 · 6.11.0
Version 7.0
Release Notes

First release of L3 Base Threat and Impact Analysis.

Languages
English

Resources

Your browser is not supported!

Please upgrade to one of the following broswers: Internet Explorer 11 (or greater) or the latest version of Chrome or Firefox