This section describes how to browse events from Kaspersky CyberTrace in AlienVault USM / OSSIM.
To browse events from Kaspersky CyberTrace in the AlienVault USM / OSSIM web interface:
AlienVault USM / OSSIM displays events received from Kaspersky CyberTrace.
Events received from Kaspersky CyberTrace
AlienVault USM / OSSIM displays Kaspersky CyberTrace events of two types, which are designated in the Event Name column of the event list:
Click the button in the last column of the table (). For service events, the following data is displayed (as shown in the figure below):
Click the button in the last column of the table (). For detection events, the following data is displayed (as shown in the figure below):
The Userdata3 field contains up to 1024 symbols, so it may not contain the whole context. The whole event (including the context) is contained in the RAW LOG field.
Detection event data