Bundles are a saved set of system configurations that can be uploaded to an ExtraHop system. You can download a number of bundles from the ExtraHop Solution Bundle Index or create your own. Bundles from the index are designed to help you configure your ExtraHop system to address specific use cases; for example, the Active Directory Bundle configures your ExtraHop system to monitor Active Directory activity.

The following system customizations can be saved as part of a bundle:

  • Alerts
  • Applications
  • Dashboards
  • Detection Formats
  • Dynamic Device Groups
  • Record Queries
  • Record Formats
  • Triggers

Learn more about creating and sharing bundles with the Bundle Best Practices Guide.

Last modified 2023-11-07