SUA - Software Usage Analysis - Server Config
Log In or Register to download the BES file, and more.

0 Votes

Versioning - This is the latest version.

1SUA - Software Usage Analysis - Server Config10/2/2013 12:38:29 PM
2SUA - Software Usage Analysis - Server Config10/2/2013 1:09:14 PM
3SUA - Software Usage Analysis - Server Config10/2/2013 1:28:45 PM
4SUA - Software Usage Analysis - Server Config11/13/2013 10:10:35 AM
5SUA - Software Usage Analysis - Server Config11/13/2013 12:31:42 PM
6SUA - Software Usage Analysis - Server Config12/6/2013 11:11:55 AM


Property Details

ID2994611
StatusBeta - Preliminary testing ready for more
TitleSUA - Software Usage Analysis - Server Config
DomainBESC
Added by on 12/6/2013 11:11:55 AM
Last Modified by on 12/6/2013 11:11:55 AM
Counters 4257 Views / 13 Downloads
User Rating 1 star 2 star 3 star 4 star 5 star * Average over 0 ratings. ** Log In or Register to add your rating.

Properties

DB Server Config
Period 2 days
 
  * Results in a true/false
Show indented relevance
lines whose(it does not contain "password") of file "database.yml" of folder "config" of (parent folder of folder (parenthesized part of match (regex "^%22?([^%22]+)\\TEMAnalytics.exe%22?") of (value whose (name of it = "ImagePath") of keys "HKLM\SYSTEM\CurrentControlSet\services\TEMA" of registry as string)))
Version
Period 2 days
 
  * Results in a true/false
Show indented relevance
(parenthesized part of match (regex "['%22]([\d\.]+)['%22]") of concatenation of lines containing "full_string" of file (parent folder of folder (parenthesized part of match (regex "^%22?([^%22]+)\\TEMAnalytics.exe%22?") of (value whose (name of it = "ImagePath") of keys "HKLM\SYSTEM\CurrentControlSet\services\TEMA" of registry as string)) as string & "\work\tema\webapp\WEB-INF\config\version.rb")) as string
reg config
Period 2 days
 
  * Results in a true/false
Show indented relevance
(name of it & " -> " & it as string) of values of key "TEMA\Parameters\Java" of key whose(exists key "TEMA" of it) of key "HKEY_LOCAL_MACHINE\SOFTWARE\Apache Software Foundation" of registry
reg service config
Period 2 days
 
  * Results in a true/false
Show indented relevance
(name of it & " -> " & it as string) of values of key "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\TEMA" of registry
JVM
Period 2 days
 
  * Results in a true/false
Show indented relevance
value "Jvm" of key "TEMA\Parameters\Java" of key whose(exists key "TEMA" of it) of key "HKEY_LOCAL_MACHINE\SOFTWARE\Apache Software Foundation" of registry
Java Version
Period 2 days
 
  * Results in a true/false
Show indented relevance
file "java.dll" of parent folder of parent folder of file ((it as string) of (value "Jvm" of key "TEMA\Parameters\Java" of key whose(exists key "TEMA" of it) of key "HKEY_LOCAL_MACHINE\SOFTWARE\Apache Software Foundation" of registry))
DB Server
Period 2 days
 
  * Results in a true/false
Show indented relevance
unique values of (following text of first "host:" of it as trimmed string) of lines whose(it contains "host:") of file "database.yml" of folder "config" of (parent folder of folder (parenthesized part of match (regex "^%22?([^%22]+)\\TEMAnalytics.exe%22?") of (value whose (name of it = "ImagePath") of keys "HKLM\SYSTEM\CurrentControlSet\services\TEMA" of registry as string)))
Java Max Memory
Period 1 day
 
  * Results in a true/false
Show indented relevance
value "JvmMx" of key "TEMA\Parameters\Java" of key whose(exists key "TEMA" of it) of key "HKEY_LOCAL_MACHINE\SOFTWARE\Apache Software Foundation" of registry
Successful Imports
Period 1 day
 
  * Results in a true/false
Show indented relevance
number of files whose(exists lines whose(it contains " INFO: Import succeeded in ") of it) of folder "log\imports" of (parent folder of folder (parenthesized part of match (regex "^%22?([^%22]+)\\TEMAnalytics.exe%22?") of (value whose (name of it = "ImagePath") of keys "HKLM\SYSTEM\CurrentControlSet\services\TEMA" of registry as string)))
SUA service
Period 1 hour
 
  * Results in a true/false
Show indented relevance
exists running service "TEMA"
Bin Folder Path
Period 2 days
 
  * Results in a true/false
Show indented relevance
((it as string) of parenthesized part of match (regex "^%22?([^%22]+)\\TEMAnalytics.exe%22?") of (it as string) of value whose (name of it = "ImagePath") of keys "HKLM\SYSTEM\CurrentControlSet\services\TEMA" of registry)
master.tag
Period 2 days
 
  * Results in a true/false
Show indented relevance
(it as trimmed string) whose(it does not start with "#" AND it != "") of lines of file "master.tag" of folder "admin" of parent folder of folder ((it as string) of parenthesized part of match (regex "^%22?([^%22]+)\\TEMAnalytics.exe%22?") of (it as string) of value whose (name of it = "ImagePath") of keys "HKLM\SYSTEM\CurrentControlSet\services\TEMA" of registry)
image path of service "TEMA"
Period 2 days
 
  * Results in a true/false
Show indented relevance
image path of service "TEMA"
login account of service "TEMA"
Period 2 days
 
  * Results in a true/false
Show indented relevance
login account of service "TEMA"
start type of service "TEMA"
Period 2 days
 
  * Results in a true/false
Show indented relevance
start type of service "TEMA"
version of service "TEMA"
Period 2 days
 
  * Results in a true/false
Show indented relevance
version of service "TEMA"
dns name
Period 2 days
 
  * Results in a true/false
Show indented relevance
dns name
SUA service user member of local admin group?
Period 6 hours
 
  * Results in a true/false
Show indented relevance
/* This may not work, or be applicable in all cases */ exists members whose(it as string as lowercase contains following text of first "\" of (it as string as lowercase) of login account of service "TEMA") of local group "Administrators"
SUA RAM usage
Period 6 hours
 
  * Results in a true/false
Show indented relevance
working set size of process whose (name of it as lowercase is "temanalytics.exe")
SUA RAM usage - WMI
Period 6 hours
 
  * Results in a true/false
Show indented relevance
((((string value of selects "WorkingSetSize from win32_process where Name = 'temanalytics.exe'" of wmi) as integer) / (1024*1024)) as string & " MB")

Relevance

isWindows (Relevance 1172)
Used in 1107 fixlets and 524 analyses   * Results in a true/false
Show indented relevance
windows of operating system
Used in 1 fixlet and 6 analyses   * Results in a true/false
Show indented relevance
exists folder (parent folder of folder (parenthesized part of match (regex "^%22?([^%22]+)\\TEMAnalytics.exe%22?") of (value whose (name of it = "ImagePath") of keys "HKLM\SYSTEM\CurrentControlSet\services\TEMA" of registry as string)) as string & "\work\tema\webapp\WEB-INF\domains\sam")

Sharing

Social Media:
Share this page on Yammer

Comments

Log In or Register to leave comments!