Difference between revisions of "KHIKA App for Symantec Antivirus"
Jump to navigation
Jump to search
Onkar pawar (talk | contribs) |
Onkar pawar (talk | contribs) |
||
| Line 21: | Line 21: | ||
|- | |- | ||
|Count Of Server wise downloaded from | |Count Of Server wise downloaded from | ||
| − | |X axis : All the Server which contain downloaded content | + | |X axis : All the Server which contain downloaded content update failed events <br/> |
Y axis : Stacked within each bar (ie. for each download from) the Server and count of events | Y axis : Stacked within each bar (ie. for each download from) the Server and count of events | ||
|- | |- | ||
| − | |Count Of Computer wise | + | |Count Of Computer wise downloaded from |
| − | |X axis : All the Computer which contain downloaded content | + | |X axis : All the Computer which contain downloaded content update failed events <br/> |
Y axis : Stacked within each bar (ie. for each download from) Computer and count of events | Y axis : Stacked within each bar (ie. for each download from) Computer and count of events | ||
|- | |- | ||
|Time trend | |Time trend | ||
| − | |Trend of downloaded content | + | |Trend of downloaded content update failed events over time. Useful to identify unusual spikes at a glance. <br/><br/>X axis : date & time <br/>Y axis : count of events |
|- | |- | ||
|Summary Table | |Summary Table | ||
| Line 37: | Line 37: | ||
==== Suggestion for useful interaction with this dashboard could be : ==== | ==== Suggestion for useful interaction with this dashboard could be : ==== | ||
| − | #Click on and select a particular Computer from Contribution of Computer pie. The rest of the | + | #Click on and select a particular Computer from Contribution of Computer pie. The rest of the visualization reflects all servers,downloaded from,server etc info with this Computer. How to remove this filter is explained [[Filter information on Dashboards|here]] |
=== Symantec Antivirus Virus Found Dashboard === | === Symantec Antivirus Virus Found Dashboard === | ||
| Line 65: | Line 65: | ||
|- | |- | ||
|IP Address wise Risk Name count | |IP Address wise Risk Name count | ||
| − | |X axis : All IP | + | |X axis : All IP Address for which virus were found<br/> |
Y axis : IP Address wise Risk name and its count. | Y axis : IP Address wise Risk name and its count. | ||
|- | |- | ||
|Server wise Risk Name count | |Server wise Risk Name count | ||
| − | |X axis :All the | + | |X axis :All the Symantec Antivirus Servers for which virus were found<br/> |
Y axis : Server Name wise Risk and its count | Y axis : Server Name wise Risk and its count | ||
|- | |- | ||
| Line 82: | Line 82: | ||
==== A suggestion for useful interaction with this dashboard could be : ==== | ==== A suggestion for useful interaction with this dashboard could be : ==== | ||
| − | #Click on and select a particular computer from contribution of Computer Name pie. The rest of the | + | #Click on and select a particular computer from contribution of Computer Name pie. The rest of the visualization reflects all user,action ,risk etc this computer. |
| − | #For further drill down click on and select particular action in Contribution of Actual Action pie. Now rest of the | + | #For further drill down click on and select particular action in Contribution of Actual Action pie. Now rest of the visualization reflects for this Action.In Summary table will see all events for this particular computer name and action which is the Risk Name,Server,IP Address etc. |
=== Symantec Antivirus Malware Information Dashboard === | === Symantec Antivirus Malware Information Dashboard === | ||
| − | Go to "Dashboards" from the left menu. From the list of in-built dashboards, select this one. It shall open the Dashboard. This dashboard gives summary of which | + | Go to "Dashboards" from the left menu. From the list of in-built dashboards, select this one. It shall open the Dashboard. This dashboard gives summary of which malware's found and its daily count.Details like which is the Risk Name, Risk Count ,Category Type etc is shown in the analytical fashion. |
You can filter and search information and create new ones too. For help with Dashboards, click [[KHIKA Dashboards|here]] | You can filter and search information and create new ones too. For help with Dashboards, click [[KHIKA Dashboards|here]] | ||
| Line 104: | Line 104: | ||
|Contribution of All Risk Name | |Contribution of All Risk Name | ||
|- | |- | ||
| − | |Contribution of | + | |Contribution of Category Type |
| − | |Contribution of All | + | |Contribution of All Category type for Malware events |
|- | |- | ||
|Category Type wise Risk Name count | |Category Type wise Risk Name count | ||
| − | |X axis : All | + | |X axis : All category Type in Malware events<br/> |
Y Axis : Category Type wise Risk Name and ts event count | Y Axis : Category Type wise Risk Name and ts event count | ||
|- | |- | ||
| Line 130: | Line 130: | ||
=== Symantec Antivirus Scan Complete with Risk Dashboard === | === Symantec Antivirus Scan Complete with Risk Dashboard === | ||
| − | Go to "Dashboards" from the left menu. From the list of in-built dashboards, select this one. It shall open the Dashboard. This report gives On which computer when scan was started and ends.Number of risk in | + | Go to "Dashboards" from the left menu. From the list of in-built dashboards, select this one. It shall open the Dashboard. This report gives On which computer when scan was started and ends.Number of risk in scan and how many risk are omitted. |
You can filter and search information and create new ones too. For help with Dashboards, click [[KHIKA Dashboards|here]] | You can filter and search information and create new ones too. For help with Dashboards, click [[KHIKA Dashboards|here]] | ||
| Line 168: | Line 168: | ||
==== Some suggestions for useful interaction with this dashboard could be : ==== | ==== Some suggestions for useful interaction with this dashboard could be : ==== | ||
| − | #Click on and select a particular computer from contribution of Computer pie. The rest of the | + | #Click on and select a particular computer from contribution of Computer pie. The rest of the visualization reflects all Server,Group, IP address etc info for this computer. |
| − | #For further drill down click on and select particular Group in Contribution of Group pie. Now rest of the | + | #For further drill down click on and select particular Group in Contribution of Group pie. Now rest of the visualization reflects for this Action.In Summary table will see all events for this particular Computer and Group when scan is started and end ,found risk count,omitted risk count etc.. |
=== Symantec Antivirus Live Update Error Dashboard === | === Symantec Antivirus Live Update Error Dashboard === | ||
| − | Go to "Dashboards" from the left menu. From the list of in-built dashboards, select this one. It shall open the Dashboard. This | + | Go to "Dashboards" from the left menu. From the list of in-built dashboards, select this one. It shall open the Dashboard. This Dashboard gives on which computer when error occurred during live update activity. |
You can filter and search information and create new ones too. For help with Dashboards, click [[KHIKA Dashboards|here]] | You can filter and search information and create new ones too. For help with Dashboards, click [[KHIKA Dashboards|here]] | ||
| Line 192: | Line 192: | ||
|- | |- | ||
|Contribution of Error | |Contribution of Error | ||
| − | |Contribution of Error which occurred in live | + | |Contribution of Error which occurred in live update activity. |
|- | |- | ||
|Computer Wise Error count | |Computer Wise Error count | ||
| Line 208: | Line 208: | ||
==== A suggestion for useful interaction with this dashboard could be : ==== | ==== A suggestion for useful interaction with this dashboard could be : ==== | ||
| − | #Click on and select a particular Computer from Contribution of Computer name. The rest of the | + | #Click on and select a particular Computer from Contribution of Computer name. The rest of the visualization reflects all Error,Update Type etc info for this Computer. |
| − | #For further drill down click on and select | + | #For further drill down click on and select particular Error in Contribution of Error Pie. Now rest of the visualization reflects for this Error also. |
=== Symantec Antivirus Multiple Virus Found Dashboard === | === Symantec Antivirus Multiple Virus Found Dashboard === | ||
| Line 229: | Line 229: | ||
|- | |- | ||
|Computer wise Risks | |Computer wise Risks | ||
| − | |X axis : computer Name on which | + | |X axis : computer Name on which multiple virus found<br/> |
Y axis : Virus found on each Computer. | Y axis : Virus found on each Computer. | ||
|- | |- | ||
|Time trend | |Time trend | ||
| − | |Trend of | + | |Trend of multiple virus found on same machine over time. Useful to identify unusual spikes at a glance.<br/><br/>X axis : date & time<br/>Y axis : count of events |
|- | |- | ||
|Summary Table | |Summary Table | ||
| Line 242: | Line 242: | ||
==== A suggestion for useful interaction with this dashboard could be : ==== | ==== A suggestion for useful interaction with this dashboard could be : ==== | ||
| − | Click on and select a particular Computer from Contribution of Computers. The rest of the | + | Click on and select a particular Computer from Contribution of Computers. The rest of the visualization reflects all Error,Update Type etc info for this Computer. |
=== Symantec Antivirus System In Risk Dashboard === | === Symantec Antivirus System In Risk Dashboard === | ||
| − | Go to "Dashboards" from the left menu. From the list of in-built dashboards, select this one. It shall open the Dashboard. This | + | Go to "Dashboards" from the left menu. From the list of in-built dashboards, select this one. It shall open the Dashboard. This Dashboard gives summary information about on particular computer which risk found and each risk count on daily basis |
You can filter and search information and create new ones too. For help with Dashboards, click [[KHIKA Dashboards|here]] | You can filter and search information and create new ones too. For help with Dashboards, click [[KHIKA Dashboards|here]] | ||
| Line 281: | Line 281: | ||
==== Some suggestions for useful interaction with this dashboard could be : ==== | ==== Some suggestions for useful interaction with this dashboard could be : ==== | ||
| − | #Click on and select a particular Risk from Contribution of Risk Name. The rest of the | + | #Click on and select a particular Risk from Contribution of Risk Name. The rest of the visualization reflects Computer,IP Address etc info for this Risk. |
| − | #For further drill down click on and select | + | #For further drill down click on and select particular computer in Contribution of Computer Name Pie. Now rest of the visualization reflects for this Error also. |
| − | Summary table shows info for this particular risk and computer like IP Address, | + | Summary table shows info for this particular risk and computer like IP Address,total count of Risk etc. |
=== Symantec Antivirus SEP Cant Take Action Dashboard === | === Symantec Antivirus SEP Cant Take Action Dashboard === | ||
| − | Go to "Dashboards" from the left menu. From the list of in-built dashboards, select this one. It shall open the Dashboard. This dashboard gives information about virus for | + | Go to "Dashboards" from the left menu. From the list of in-built dashboards, select this one. It shall open the Dashboard. This dashboard gives information about virus for which Symantec Endpoint Protection can not take nay action.Detail like Risk name,computer,IP Address etc. is shown in Analytical Fashion. |
You can filter and search information and create new ones too. For help with Dashboards, click [[KHIKA Dashboards|here]] | You can filter and search information and create new ones too. For help with Dashboards, click [[KHIKA Dashboards|here]] | ||
| Line 321: | Line 321: | ||
==== A suggestion for useful interaction with this dashboard could be : ==== | ==== A suggestion for useful interaction with this dashboard could be : ==== | ||
| − | Click on and select a particular Risk Name from contribution of Risk Name pie. The rest of the | + | Click on and select a particular Risk Name from contribution of Risk Name pie. The rest of the visualization reflects all Computer,IP Address etc. info with this Risk Name. |
=== Symantec Antivirus Update Failed Dashboard === | === Symantec Antivirus Update Failed Dashboard === | ||
| Line 341: | Line 341: | ||
|- | |- | ||
|Contribution of Servers | |Contribution of Servers | ||
| − | |Contribution of | + | |Contribution of Symantec AV Servers |
|- | |- | ||
|Contribution of Errors | |Contribution of Errors | ||
| − | | | + | |Contribution of Error - Failed to Load and Failed to Install |
|Computer Wise Update Count | |Computer Wise Update Count | ||
|X axis : Computer Name<br/> | |X axis : Computer Name<br/> | ||
| Line 359: | Line 359: | ||
==== A suggestion for useful interaction with this dashboard could be : ==== | ==== A suggestion for useful interaction with this dashboard could be : ==== | ||
| − | #Click on and select a particular Computer from Contribution of Computer name. The rest of the | + | #Click on and select a particular Computer from Contribution of Computer name. The rest of the visualization reflects all Error,Update Type etc info for this Computer. |
| − | #For further drill down click on and select | + | #For further drill down click on and select particular Error in Contribution of Error Pie. Now rest of the visualization reflects for this Error also. |
Revision as of 08:12, 19 June 2019
Contents
- 1 How to check the output of KHIKA Symantec Antivirus App ?
- 1.1 Symantec Antivirus Downloaded Content Update Failed Dashboard
- 1.2 Symantec Antivirus Virus Found Dashboard
- 1.3 Symantec Antivirus Malware Information Dashboard
- 1.4 Symantec Antivirus Scan Complete with Risk Dashboard
- 1.5 Symantec Antivirus Live Update Error Dashboard
- 1.6 Symantec Antivirus Multiple Virus Found Dashboard
- 1.7 Symantec Antivirus System In Risk Dashboard
- 1.8 Symantec Antivirus SEP Cant Take Action Dashboard
- 1.9 Symantec Antivirus Update Failed Dashboard
How to check the output of KHIKA Symantec Antivirus App ?
Symantec Antivirus Downloaded Content Update Failed Dashboard
Go to "Dashboards" from the left menu. From the list of in-built dashboards, select this one. It shall open the Dashboard. This dashboard gives information about on which computer content downloaded successfully but update failed. Details like Server Name,Computer Name,from where downloaded is shown in an analytical fashion. You can filter and search information and create new ones too. For help with Dashboards, click here
Elements in the Dashboard are explained below :
| Visualization | Description |
| Contribution Of Servers | Contribution of Server for Downloaded content update failed event. |
| Contribution of Computer | Contribution of Computer for Downloaded content update failed event. |
| Count Of Server wise downloaded from | X axis : All the Server which contain downloaded content update failed events Y axis : Stacked within each bar (ie. for each download from) the Server and count of events |
| Count Of Computer wise downloaded from | X axis : All the Computer which contain downloaded content update failed events Y axis : Stacked within each bar (ie. for each download from) Computer and count of events |
| Time trend | Trend of downloaded content update failed events over time. Useful to identify unusual spikes at a glance. X axis : date & time Y axis : count of events |
| Summary Table | Detailed data with timestamp and count |
Suggestion for useful interaction with this dashboard could be :
- Click on and select a particular Computer from Contribution of Computer pie. The rest of the visualization reflects all servers,downloaded from,server etc info with this Computer. How to remove this filter is explained here
Symantec Antivirus Virus Found Dashboard
Go to "Dashboards" from the left menu. From the list of in-built dashboards, select this one. It shall open the Dashboard. Critical files in your system are monitored for any change / edit and real time alerts are fired if any such incident, as well as displayed, on this monitoring dashboard. You can filter and search information and create new ones too. For help with Dashboards, click here
Elements in the Dashboard are explained below :
| Visualization | Description |
| Contribution of Action pie - | Which are the actions when Virus found |
| Contribution of Computer Name | Computer Names on which virus Found |
| Contribution of Server | Servers Name on which virus found |
| Contribution of User | Users Name when virus were found |
| IP Address wise Risk Name count | X axis : All IP Address for which virus were found Y axis : IP Address wise Risk name and its count. |
| Server wise Risk Name count | X axis :All the Symantec Antivirus Servers for which virus were found Y axis : Server Name wise Risk and its count |
| Time trend | Trend of virus found events over time. Useful to identify unusual spikes at a glance. X axis : date & time Y axis : count of events |
| Summary Table | Detailed data with timestamp and count |
A suggestion for useful interaction with this dashboard could be :
- Click on and select a particular computer from contribution of Computer Name pie. The rest of the visualization reflects all user,action ,risk etc this computer.
- For further drill down click on and select particular action in Contribution of Actual Action pie. Now rest of the visualization reflects for this Action.In Summary table will see all events for this particular computer name and action which is the Risk Name,Server,IP Address etc.
Symantec Antivirus Malware Information Dashboard
Go to "Dashboards" from the left menu. From the list of in-built dashboards, select this one. It shall open the Dashboard. This dashboard gives summary of which malware's found and its daily count.Details like which is the Risk Name, Risk Count ,Category Type etc is shown in the analytical fashion.
You can filter and search information and create new ones too. For help with Dashboards, click here
Elements in the Dashboard are explained below :
| Visualization | Description |
| Contribution of Risk Name | Contribution of All Risk Name |
| Contribution of Category Type | Contribution of All Category type for Malware events |
| Category Type wise Risk Name count | X axis : All category Type in Malware events Y Axis : Category Type wise Risk Name and ts event count |
| Risk Name wise Count | X axis : All the Risk Name Y axis : Each Risk Count |
| Daily trend | Trend of daily malware event count. Useful to identify unusual spikes at a glance. X axis : date & time Y axis : count of events |
| Summary Table | Detailed data with timestamp and count |
Some suggestions for useful interaction with this dashboard could be :
Click on and select a particular Risk from contribution of Risk Name Name pie. The rest of the visulaisation reflects for this Risk.
Symantec Antivirus Scan Complete with Risk Dashboard
Go to "Dashboards" from the left menu. From the list of in-built dashboards, select this one. It shall open the Dashboard. This report gives On which computer when scan was started and ends.Number of risk in scan and how many risk are omitted.
You can filter and search information and create new ones too. For help with Dashboards, click here
Elements in the Dashboard are explained below :
| Visualization | Description |
| Contribution of Computers | Computers on which scan completed |
| Contribution of Groups | Group Name which are in Scan |
| Contribution of Servers | Serves on which scan is done |
| IP Address Wise Count | X axis : All the IP Address in Scan Y axis : IP Address wise risk count |
| Begin Time Daily trend | Trend of when scan begin over time. Useful to identify unusual spikes at a glance. X axis : date & time Y axis : count of events |
| End Time Daily trend | Trend of when sacn ends over time. Useful to identify unusual spikes at a glance. X axis : date & time Y axis : count of events |
| Summary Table | Detailed data with timestamp and count |
Some suggestions for useful interaction with this dashboard could be :
- Click on and select a particular computer from contribution of Computer pie. The rest of the visualization reflects all Server,Group, IP address etc info for this computer.
- For further drill down click on and select particular Group in Contribution of Group pie. Now rest of the visualization reflects for this Action.In Summary table will see all events for this particular Computer and Group when scan is started and end ,found risk count,omitted risk count etc..
Symantec Antivirus Live Update Error Dashboard
Go to "Dashboards" from the left menu. From the list of in-built dashboards, select this one. It shall open the Dashboard. This Dashboard gives on which computer when error occurred during live update activity.
You can filter and search information and create new ones too. For help with Dashboards, click here
Elements in the Dashboard are explained below :
| Visualization | Description |
| Contribution of Server | Contribution of Servers(which added in KHIKA) |
| Contribution of Computer Name | Contribution of Computer on which error occurred during live update |
| Contribution of Error | Contribution of Error which occurred in live update activity. |
| Computer Wise Error count | X axis : All computer name in live update activity Y axis : Computer wise each error and its count |
| Daily Trend | Trend of login events over time. Useful to identify unusual spikes at a glance. X axis : date & time Y axis : count of events |
| Summary Table | Detailed data with timestamp and count |
A suggestion for useful interaction with this dashboard could be :
- Click on and select a particular Computer from Contribution of Computer name. The rest of the visualization reflects all Error,Update Type etc info for this Computer.
- For further drill down click on and select particular Error in Contribution of Error Pie. Now rest of the visualization reflects for this Error also.
Symantec Antivirus Multiple Virus Found Dashboard
Go to "Dashboards" from the left menu. From the list of in-built dashboards, select this one. It shall open the Dashboard. This dashboard gives information about multiple virus found on same machine.
You can filter and search information and create new ones too. For help with Dashboards, click here
Elements in the Dashboard are explained below :
| Visualization | Description |
| Contribution of computer | Names and contribution of the permissions given |
| Computer wise Risks | X axis : computer Name on which multiple virus found Y axis : Virus found on each Computer. |
| Time trend | Trend of multiple virus found on same machine over time. Useful to identify unusual spikes at a glance. X axis : date & time Y axis : count of events |
| Summary Table | Detailed data with timestamp and count |
A suggestion for useful interaction with this dashboard could be :
Click on and select a particular Computer from Contribution of Computers. The rest of the visualization reflects all Error,Update Type etc info for this Computer.
Symantec Antivirus System In Risk Dashboard
Go to "Dashboards" from the left menu. From the list of in-built dashboards, select this one. It shall open the Dashboard. This Dashboard gives summary information about on particular computer which risk found and each risk count on daily basis
You can filter and search information and create new ones too. For help with Dashboards, click here
Elements in the Dashboard are explained below :
| Visualization | Description |
| Contribution of Computer | Name and Contribution of Computer on which Risk Found |
| Contribution of Risk Name | Name and Contribution of Risks |
| IP Address wise RiskName | X axis : IP address Y axis : Computer wise each Risk and its count |
| Computer wise RiskName | X axis : Computer Name Y axis : Computer wise each Risk and its count |
| Daily Trend | Trend of daily risk found over time. Useful to identify unusual spikes at a glance. X axis : date & time Y axis : count of events |
| Summary Table | Detailed data with timestamp and count |
Some suggestions for useful interaction with this dashboard could be :
- Click on and select a particular Risk from Contribution of Risk Name. The rest of the visualization reflects Computer,IP Address etc info for this Risk.
- For further drill down click on and select particular computer in Contribution of Computer Name Pie. Now rest of the visualization reflects for this Error also.
Summary table shows info for this particular risk and computer like IP Address,total count of Risk etc.
Symantec Antivirus SEP Cant Take Action Dashboard
Go to "Dashboards" from the left menu. From the list of in-built dashboards, select this one. It shall open the Dashboard. This dashboard gives information about virus for which Symantec Endpoint Protection can not take nay action.Detail like Risk name,computer,IP Address etc. is shown in Analytical Fashion.
You can filter and search information and create new ones too. For help with Dashboards, click here
Elements in the Dashboard are explained below :
| Visualization | Description | ||
| Contribution of Computer Names | Name of the computer on which virus found and SEP can not action | ||
| Contribution of Servers | Contribution of Symantec AV Servers | ||
| Contribution of Risk Name | Names and contribution of Risk on which SEP can not action | IP Address wise Risks | X axis : IP Address Y axis : IP Address wise Risk found on which SEP can not take action and each risk count . |
| Time trend | Trend of SEP can not take action events over time. Useful to identify unusual spikes at a glance. X axis : date & time Y axis : count of events | ||
| Summary Table | Detailed data with timestamp and count |
A suggestion for useful interaction with this dashboard could be :
Click on and select a particular Risk Name from contribution of Risk Name pie. The rest of the visualization reflects all Computer,IP Address etc. info with this Risk Name.
Symantec Antivirus Update Failed Dashboard
Go to "Dashboards" from the left menu. From the list of in-built dashboards, select this one. It shall open the Dashboard. This dashboard gives information about update failed for to load or install.
You can filter and search information and create new ones too. For help with Dashboards, click here
Elements in the Dashboard are explained below :
| Visualization | Description | ||
| Contribution of Computer Names | Name Computer and Contribution for which update failed | ||
| Contribution of Servers | Contribution of Symantec AV Servers | ||
| Contribution of Errors | Contribution of Error - Failed to Load and Failed to Install | Computer Wise Update Count | X axis : Computer Name Y axis : Computer wise update type which is failed and its event count. |
| Time trend | Trend of SEP can not take action events over time. Useful to identify unusual spikes at a glance. X axis : date & time Y axis : count of events | ||
| Summary Table | Detailed data with timestamp and count |
A suggestion for useful interaction with this dashboard could be :
- Click on and select a particular Computer from Contribution of Computer name. The rest of the visualization reflects all Error,Update Type etc info for this Computer.
- For further drill down click on and select particular Error in Contribution of Error Pie. Now rest of the visualization reflects for this Error also.
