...
Setting | Details |
---|---|
| Credential client ID. |
| Credential client secret. |
| Credential account ID. |
| Credential API base url. |
Info |
---|
See the Accepted authentication methods section to verify what settings are required based on the desired authentication method. |
...
Data Source | Description | API Endpoint | Collector service name | Devo Table | Available from release |
Notifications | Malwarebytes Nebula can notify you when certain events occur, such as when real-time protection or scheduled scans detect threats, or if a new endpoint registers to your console. |
| notifications |
| v1.0.0 |
Detection | The Detections section in Malwarebytes Nebula displays information on all threats, and potential threats, with the action taken for each item found on endpoints in your environment |
| detections |
| v1.0.0 |
Events | Event is a general term for a threat that has occurred, remediation or other action taken on a threat, and other endpoint-related activity. |
| events |
| v1.0.0 |
Vulnerability Management | shows vulnerabilities for installed software and operating systems on managed endpoints. |
| vulnerability_management |
| v1.0.0 |
Suspicious activity | Suspicious Activity Monitoring is a feature included in Malwarebytes Endpoint Detection and Response |
| suspicious_activity |
| v1.0.0 |
DNS Logs Data | Logs of Dns data |
| dns_log_data |
| v1.0.0 |
For more information on how the events are parsed, visit our page.
Vendor setup
There are some steps you need to follow to run the collector.
Rw ui steps macro | ||||||||
---|---|---|---|---|---|---|---|---|
Use your email and password to login into Malware Nebula Cloud.
Go to Settings → API & Integrations → Add.
Provide necessary access to the credentials.
A new web client will be created. |
Anchor | ||||
---|---|---|---|---|
|
...