Logo
Sign in
  1. Logpoint Service Desk
  2. Products Hub
  3. Marketplace

Malwarebytes

Avatar Permanently deleted user
December 11, 2024 08:47
Follow
malwarebytes.png

General Description

The Malwarebytes application normalizes Malwarebytes events and enables you to analyze the data using pre-set dashboard views. You can further customize the dashboard and searches to perform in-depth analysis.

For LogPoint v6.7.0 or later For LogPoint v6.0.0 to v6.6.6

Release Details

Fields

Details

Name

Malwarebytes

Version

5.0.1

Supported On

LogPoint v6.7.0 and later

Release Date

2020-05-14
Document Date

2020-05-14
Download

Malwarebytes_5.0.1.pak
SHA256

e41fb84e0f361a912b418bc674472f10c885a7e9387b4ecfe5a37a4c53d15095


Package Details

The application consists of the following components:

  1. Dashboard Package
    • LP_Malwarebytes 
  2. Compiled Normalizer
    • MalwarebytesCEFCompiledNormalizer

Enhancement

A minor update has been done in the application’s normalizer for better signature handling.

Installation 

Follow these steps to install the Malwarebytes v5.0.1 application:

  1. Download the Malwarebytes package from the Download section above.
  2. Add Malwarebytes as the required device in LogPoint.
  3. Create a collection policy with the Syslog collector and appropriate processing policy. 
  4. Assign the policy to the device.
  5. Add the dashboard.

Screenshot

malwarebytes1.png

Supported Devices

The supported devices of Malwarebytes with LogPoint in this configuration are:

  1. Malwarebytes Breach Remediation
  2. Malwarebytes Endpoint Security
  3. Malwarebytes Timeliner

Log Format

Expected Log Format

CSV

Log Sample

log_ts=06/07/2018 20:23:20,norm_id=Malwarebytes,severity=CRITICAL,status=Completed,host=mlbytesxxx,user=Bob,event_type=Scan,event_source=TSTxxxxx

To export data to LogPoint, use syslog collector on port 514 on the LogPoint server.

Release Details

Fields

Details

Name

Malwarebytes

Version

3.3.1

Supported On

LogPoint v6.0.0 and later

Release Date

2018-09-06
Document Date

2018-09-06
Download Malwarebytes_3.3.1.pak
SHA256

25c98921a6cbb72220d8ebfae09bb598d083ca71df7c8eb36f55321778cb8b4f


Package Details

The application contains:

  1. Dashboard Package
    • LP_Malwarebytes 
  2. Compiled Normalizer
    • MalwarebytesCEFCompiledNormalizer

Bugfix

From now on, the application's compiled normalizer correctly calculates the log_ts for the timezones behind UTC. 

Installation 

Follow these steps to install the Malwarebytes v3.3.1 application:

  1. Download the Malwarebytes package from the Download section above.
  2. Add the required Malwarebytes as a device in LogPoint.
  3. Create a processing policy.
  4. Assign the policy to the device.

Screenshots

malware-1.png

malwarebytes2.png

malware-3.png

Supported Version

The supported versions of Malwarebytes with LogPoint in this configuration are:

CEF logs for

  1. Malwarebytes Breach Remediation
  2. Malwarebytes Endpoint Security
  3. Malwarebytes Timeliner

Configuration Of Sources 

Expected Log Format

Comma Separated Values

Log Sample

log_ts=06/07/2018 20:23:20,norm_id=Malwarebytes,severity=CRITICAL,status=Completed,host=mlbytesxxx,user=Bob,event_type=Scan,event_source=TSTxxxxx

To export data to LogPoint use Syslog collector on port 514 on the LogPoint server. 


Support

If you have any queries or require assistance, please feel free to contact our support team: 

Email: servicedesk@logpoint.com
Phone: +45 7060 6100

Best regards,
untitled.svg

  • malwarebytes.png (20 KB)

Comments

Article is closed for comments.

Related articles

  • McAfee EPO
  • LogPoint-6.6.0 UpgradeHelper v3.0.0
  • Lenovo
  • Blue Coat
  • Time Series Anomaly Plugin
Was this article helpful?
1 out of 2 found this helpful
Privacy policy    EULA    Terms of service   
Copyright © , Logpoint. All rights reserved.