Micro Focus Micro Focus Community
Support via Micro Focus Software Support, with a ticket filed against the associated product.
Micro Focus offers a content partnership program for select partners. Support for Partner Content offerings is provided by the partner and not by Micro Focus of the Micro Focus community.
Micro Focus Community Content is provided by Micro Focus for the benefit of customers, support for it is not available via Micro Focus Software Support but through specific community content forums.
Community Contributed Content is provided by Micro Focus customers and supported by them.
The ArcSight Activate L1 - Application Monitoring Web Services - Indicators and Warnings package has been developed to detect anomalies and suspicious requests that are recorded in web server logs that may not be visible to other protective measures such as IDS/IPS and WAF due to the use of encrypted transport. In addition, the package provides a set of HTTP request method and response code filters supported by the HTTP Protocol to monitor possible DoS HTTP flooding attacks, as well as identifies some suspicious XSS and SQL injection attacks.It also can provide indicators and warnings of potential security incidents at the application level, such as L1 Application Monitoring Web Applications or other packages.
The L1 Application Monitoring Web Services - Indicators and Warnings package has addressed the following use cases
Included new use cases to monitor web server logs:
Now the package also supports MITRE Framework.
Micro Focus rebranding changes
Related content and resources
Please upgrade to one of the following broswers: Internet Explorer 11 (or greater) or the latest version of Chrome or Firefox