Home
Arc
Learn how Arc provides endpoint security in high availability environments.
Arc
Introduction
An overview of Arc.
Detection information
The information that Arc detects. The table shows two types of License: sensor and endpoint. When the License is listed as sensor, it means that the detection is based on information that has been extracted from the sensor. When the License is listed as endpoint, it means that the detection is based on information that has been extracted from the endpoint.

Arc
Learn how Arc provides endpoint security in high availability environments.
- Arc
  - Introduction
    An overview of Arc.
    - Arc overview
      Arc™ is a host-based sensor that detects and defends against malicious or compromised endpoints, and insider attacks. You can use Arc sensors to aggregate data for analysis and reports, either on-premises, or in the Vantage cloud.
    - Architecture
      It is important to understand the different architecture possibilities that are available with Arc.
    - Arc in Vantage
      The Sensors page shows all the Arc sensors in the network. It also lets you connect an Arc sensor.
    - Arc in Guardian
      The Arc button in the Guardian Web UI lets you access the different pages for Arc.
    - Arc in CMC
      The Arc button in the Central Management Console (CMC) Web UI lets you access the different pages for Arc.
    - Viewing data from Arc
      The data Arc acquires can be viewed in different places, and in different formats.
    - Security measures
      A description of the security measures that Arc uses.
    - Detection information
      The information that Arc detects. The table shows two types of License: sensor and endpoint. When the License is listed as sensor, it means that the detection is based on information that has been extracted from the sensor. When the License is listed as endpoint, it means that the detection is based on information that has been extracted from the endpoint.
  - Requirements
    The machine and network requirements necessary to use Arc.
  - Preparation
    Information on how to import Arc packages, and install a license.
  - Configuration
    Details on how to configure Arc.
  - Deployment
    Information on how to deploy Arc. This includes details for manual and automatic deployments, and deployment through a mobile device management (MDM) system.
  - Execution
    Information on the different modes that you can use with Arc.
  - Troubleshooting
    Troubleshooting procedures to help you solve problems that might occur when you use Arc.
- Arc Embedded
  Arc Embedded is a cybersecurity sensor built into PLCs to provide real-time visibility and deep threat detection within industrial control systems.
- Print format documentation
  A list of all the print-format documentation that is available for Arc and Arc Embedded.

Detection information

The information that Arc detects. The table shows two types of License: sensor and endpoint. When the License is listed as sensor, it means that the detection is based on information that has been extracted from the sensor. When the License is listed as endpoint, it means that the detection is based on information that has been extracted from the endpoint.

Table 1. Detection information
License	Information	Windows	macOS	Linux	Configuration option
sensor	Discovery				Discovery
sensor	Smart Polling				Smart Polling
sensor	Traffic monitoring				Traffic monitoring
endpoint	Antivirus				node points
endpoint	central processing unit (CPU)				node points
endpoint	CPU usage				node points
endpoint	Disk partitions				node points
endpoint	Disk usage				node points
endpoint	domain name server (DNS)				node points
endpoint	Hardware components				always on
endpoint	Hotfixes				node points
endpoint	Installed software				node points
endpoint	internet protocol (IP) addresses				always on
endpoint	Label/host name				always on
endpoint	Local address resolution protocol (ARP) table				Local ARP table
endpoint	Log4j detection				node points
endpoint	Logged in users				node points
endpoint	media access control (MAC) addresses				always on
endpoint	Malware detection				malware
endpoint	Memory usage				node points
endpoint	Network interfaces				node points
endpoint	operating system (OS)				always on
endpoint	Processes and ports				node points
endpoint	Product name				always on
endpoint	Serial number				always on
endpoint	Sigma rules				Sigma rules
endpoint	universal serial bus (USB) detections				USB detections
endpoint	USB interfaces				node points
endpoint	User accounts				node points
endpoint	Vendor				always on