Clicky


Report Description
Security
       Clients associated with DNSChanger name servers All clients associated with DNSChanger name servers detected
       Conficker Brute Force Logins Show all systems generating a level of brute force logins normally associated with conficker
       Events by User Show total number of network events associated with individual users
       Protocols on Non-standard Ports All protocols detected using non-standard ports
       Systems Accessing Malware Websites All devices connecting to websites associated with malware
       Systems Connecting to Conficker Websites Show all network devices connecting to websites associated with conficker malware
       Top Events by IP Top security events with drilldown to IP address
Security (Low Level Reports)
       Conficker All devices associated with Conficker virus
       Heartbleed All servers triggering Heartbleed events
       Heartbleed Events (Server and Client List) Show all network events associated with Heartbleed exploit attempts. Includes server and client IP addresses
       Heartbleed Exploit Show all network events associated with Heartbleed exploit attempts
       Network Events (Conficker Worm Brute Force Logins) Drilldown to systems associated with conficker brute force logins
       Network Events (DNS_MX lookups, possible SPAM) Show all suspicious DNS lookup events which could be associated with SPAM
       Network Events (Exploits) Show all network exploit type security events
       Network Events (User Defined) Show all User Defined Alerts
       Network Events Summary (User Defined) Show Summary of User Defined Alerts
       Network Security Events (IDS) (by IP | by User) All network IDS events
       Spyware HTTP Requests (by IP | by User) Show HTTP requests associated with spyware sites
       SSL Servers All servers running SSL/TLS
       Systems Accessing Malware Domains (by IP | by User) All DNS lookups associated with malware domains