Versions Compared

Old Version 4

changes.mady.by.user Former user

Saved on

compared with

New Version 5

changes.mady.by.user Former user

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Table of Contents
minLevel2
maxLevel2
typeflat

Purpose

This use case allows you to visualize Windows Activity Activeboard using synthetic sample data and it is composed of one injector to simulate the attack and one receptor to monitor it.

...

Launch Windows Activity AB

To launch the Use Case go to Exchange in the navigation pane. Look for the Use Case and click Launch to install the injector and the receptor. Once they are installed, an Open button will display. Click Open to see the alert showing detections.

...

Info

Stop use case

You can always stop the injection by clicking on the Stop use case button.

Exploring the Use Case

This Use Case shows a complete DoS attack. It is composed of one injector, which will inject synthetic data of windows logs and then install the Windows Activity Activeboard - if you don’t have it installed in your domain -.

Content

Name

Type

Injector

Injection for Windows Activity AB

Synthetic data

Receptor

Windows Activity Monitoring

Activeboard