This documentation applies to a beta version of uberAgent (docs for the latest official release)

Products: UXM & ESA

uberAgent is made up of two products: uberAgent UXM and uberAgent ESA.

User Experience Monitoring (UXM)

This is the traditional uberAgent product. If you are a customer and bought uberAgent (without any acronyms), this is what you own.

uberAgent UXM covers all aspects of user experience and application performance on any Windows or macOS endpoint. uberAgent collects detailed inventory information, shows which applications are used when and how often, determines application reliability KPIs, finds issues with network connectivity, and much more. Such a rich data set can only be collected by closely monitoring system activity: process creation, network transmissions, and many other types of events – all of which are highly relevant in a security context, too. In fact, several of our customers have been using uberAgent at least in part for security scenarios. To better support that, we built uberAgent Endpoint Security Analytics (ESA).

Endpoint Security Analytics (ESA)

uberAgent UXM and uberAgent ESA are deeply integrated. uberAgent UXM provides rich context and metadata, while uberAgent ESA adds deep security visibility. With the combination of ESA and UXM, you need only one agent for user experience, performance, and security. This guarantees the smallest possible footprint on the endpoint.

As its name implies, uberAgent ESA is an analytics product. It collects relevant security information without flooding your SIEM with data.

uberAgent ESA comes with a powerful process tagging engine that helps businesses identify risky processes. The product ships with an extensive predefined ruleset covering some of the most significant endpoint security use cases including Microsoft Office macros. Extending ESA’s rules is easily possible and highly encouraged.

Leave a Reply

Your email address will not be published. Required fields are marked *