This page contains links to uberAgent ESA ES Companion, uberAgent Helpdesk: L1 Support Dashboard, uberAgent Log Collector: uberAgent Health Monitoring, and uberAgent Logfile Syntax Highlighter for Notepad++
Splunk introduced risk-based alerting (RBA) in Enterprise Security (ES) to reduce alert volume and enhance security operations. uberAgent supports RBA through the uberAgent ESA ES companion app. See the documentation for installation instructions. When all requirements are met, the Splunk Enterprise Security dashboard Risk Analysis is populated automatically with uberAgent data.
uberAgent Helpdesk: L1 Support Dashboard
uberAgent Helpdesk is a Splunk app for IT professionals who support virtual or physical desktops and who need to resolve issues quickly (documentation). This app provides a different view of the existing uberAgent dataset that is streamlined for helpdesk use.
Log Collector: uberAgent Health Monitoring
uberAgent Log Collector helps you monitor the health of your uberAgent deployment by collecting the data logged by uberAgent and sending it to Splunk for indexing (documentation). Dashboards provide easy access.
uberAgent logs all of its actions and a great number of relevant system events (e.g., process starts, or logons). That gives you the opportunity to easily identify the root causes of problems. Even though we take great care to optimize the log for readability it is sometimes hard to find the needle in the haystack. That is why we created an uberAgent log syntax highlighter for Notepad++, our preferred text editor on Windows. It highlights the key information, making it easier to find what you are searching for.
Please read the statement below and accept the terms of use to proceed:
Please read the statement below and accept the terms of use to proceed:
Your download will start immediately upon accepting this agreement. You may close this window once your download begins.
