ActivTrak
ActivTrak normalizes ActivTrak events. You can further customize the searches to perform in-depth analysis.
Release Details
Release date: April 25, 2024
Version: 5.1.0
Supported On: Logpoint v7.4.0 and later
SHA 256: 8f143401eb02cf8fa10a9aa8194ca32bd7f4299dee92b71c05e55f356f97d380
Download
Package Detail
ActivTrak component:
-
Normalization Package
- LP_Activtrak
Enhancement
| Description | Issue ID | Reference ID |
|---|---|---|
| Added Syslog Collector based ActivTrak log source template, simplifying the log source configuration process. To learn more, go to Creating Log Source via a Template. | KB-22858 | - |
Installation
To install ActivTrak:
- Download the .pak file from the Download link above.
- Go to Settings >> System Settings from the navigation bar and click Applications.
- Click Import.
- Browse to the downloaded .pak file.
- Click Upload.
Supported Devices
The supported devices of ActivTrak with Logpoint in this configuration are:
- ActivTrak v4.3.x.x
Log Format
Expected Log Format
ActivTrak format
Log Sample
23/09/2015 09:12:06 G002104 LPGROUP 172.16.219.69 LPGROUP PPO 1 18 Inbox - test@abc.com - Microsoft Outlook OUTLOOK.EXE Microsoft Outlook
To export data to LogPoint use the Syslog collector on port 514 on the LogPoint server.
Past Release
ActivTrak v5.0.0
Supported On: Logpoint v6.0.0 and later
Release date: May 14, 2020
Download: Activtrak_5.0.0.pak
SHA 256: 4a50d688c0eff0515dd1028c89a620c7d1dbb5f5df0c8b711d78855928f42d93
Enhancement
A minor update has been done in the ActivTrak's normalizer for better signature handling.
Support
If you have any queries or require assistance, create a support ticket.
Comments
Article is closed for comments.