L1-Application Monitoring Web Services

209814

Micro Focus Micro Focus Community

App Support Tiers

MICRO FOCUS SUPPORTED

Support via Micro Focus Software Support, with a ticket filed against the associated product.

PARTNER

Micro Focus offers a content partnership program for select partners. Support for Partner Content offerings is provided by the partner and not by Micro Focus of the Micro Focus community.

MICRO FOCUS COMMUNITY

Micro Focus Community Content is provided by Micro Focus for the benefit of customers, support for it is not available via Micro Focus Software Support but through specific community content forums.

COMMUNITY

Community Contributed Content is provided by Micro Focus customers and supported by them.

Micro Focus | Micro Focus Community

The L1 - Application Monitoring Web Services - Indicators and Warnings package offers an easy way to monitor anomalies and suspicious HTTP requests imposed to web servers.
644 downloads

Description

The ArcSight Activate L1 - Application Monitoring Web Services - Indicators and Warnings package has been developed to detect anomalies and suspicious requests that are recorded in web server logs that may not be visible to other protective measures such as IDS/IPS and WAF due to the use of encrypted transport. In addition, the package provides a set of HTTP request method and response code filters supported by the HTTP Protocol to monitor possible DoS HTTP flooding attacks, as well as identifies some suspicious XSS and SQL injection attacks.It also can provide indicators and warnings of potential security incidents at the application level, such as L1 Application Monitoring Web Applications or other packages.

The L1 Application Monitoring Web Services - Indicators and Warnings package has addressed the following use cases

  • HTTP Request/Response Suspicious Activity
  • Suspicious HTTP Request
  • Suspicious URL Pattern Detection

Minimum Requirements

Releases

Release
Size
Date
L1-Application_Monitoring_Web_Services_-_Indicators_and_Warnings_1.0.0.0.zip 1.0.0.0
29.4 KB
  |  
Oct 3, 2019
More info Less info
Product compatibility
ESM
Version 6.8 · 6.9.1 · 6.11.0
Version 7.0
Release notes

Included new use cases to monitor web server logs:

  • Detected Linux File Inclusions
  • Detected Windows File Inclusions
  • Multiple HTTP 302 Redirect Requests

Now the package also supports MITRE Framework.

Languages
English
L1-Application Monitoring Web Services- Indicators and Warnings 0.2.0.0
27.0 KB
  |  
Aug 17, 2018
More info Less info
Product compatibility
ESM
Version 6.8 · 6.9.1 · 6.11.0
Version 7.0
Release notes

 Micro Focus rebranding changes 

Languages
English
L1-Application Monitoring Web Services- Indicators and Warnings 0.1.0.0
25.6 KB
  |  
May 17, 2017
More info Less info
Product compatibility
ESM
Version 6.8 · 6.11.0
Version 7.0
Release notes

Initial Release.

Languages
English

Resources

Unsubscribe from notifications

You are receiving release updates for this item because you have subscribed to the following products:
If you unsubscribe, you will no longer receive any notifications for these products.
Tip: to update your subscription preferences, go to Manage Subscriptions from your Dashboard, uncheck the products you no longer want to receive notifications for, and click 'Save'.

Marketplace Terms of Service

In order to continue, you must accept the Marketplace Terms of Service
Since you are downloading an app from the Micro Focus unified Marketplace using an Access Manager account, you need to also accept the Micro Focus Marketplace Terms of Service before you can continue. Use the link to review the Marketplace Terms of Service. Once complete check the, "I accept the Marketplace Terms of Service" box below and click accept to continue your download.

Your browser is not supported!

Please upgrade to one of the following broswers: Internet Explorer 11 (or greater) or the latest version of Chrome or Firefox

release-rel-2019-11-1-1752 | Wed Nov 13 23:32:31 PST 2019