Sentinel: Exploit Data Files

  • Document ID:3291770
  • Creation Date:02-Nov-2006
  • Modified Date:26-Apr-2012
    • Micro Focus Products:
      Sentinel

Environment

Windows 2000 sp4; 2003 sp1
Solaris 9
Linux
Sentinel 5.1.x

Situation

What files are generated by Exploit Detection?

Resolution

The Exploit Detection Service generates two files located in:

$ESEC_HOME/sentinel/bin/map_data

The two files are attackNormalization.csv and exploitDetection.csv.

The attackNormalization.csv is generated after

§Advisor feed

§DAS Startup (if enabled in das_query.xml, disabled by default)

The exploitDetection.csv is generated after one of the following:

§Advisor feed

§Vulnerability scan

Sentinel Server Startup (if enabled in das_query.xml, disabled by default)