A time-saving tool for security analysts

HP ArcSight ThreatDetector gives your analysts the tools needed to determine a suspicious event from a typical event that happens in your network. By alerting and triaging events proactively, your team can focus on real activities, rather than on regular traffic. Threatdetection identifies regular traffic as well as suspicious event patterns, instantly uncovering zero-day worms and complex attacks. Threatdetection also helps detect misconfigurations of network devices, systems, and applications.

 

Key features

  • Detect unknown threats and attacks using data visualization and analytics
  • Save time by helping analysts determine which behaviors are normal and abnormal
  • Reduce false positives to save time and money
  • Quickly determine sources by detecting and visually analyzing event flow patternS
  • Automate or assist the creation of rules based on patterns
 

Related products

  • ArcSight ESM

    Powerful enterprise security management software for analyzing and correlating every event that occurs across your organization

  • ArcSight Express

    A security management software solution for collecting log activity, consolidating information for storage efficiency and correlating events

  • ArcSight LoggerUniversal log management solution for collecting machine data from any log generating source that unify searching, storing, and analysis
  • ArcSight Threat Response ManagerIntegrated end-to-end network security and event monitoring

Related services

Related solutions