IBM BigFix was acquired by HCL Technologies, Ltd. and is now named HCL BigFix. Some of the screenshots in this article may display the previous company logo.
Introduction
Malwarebytes Breach Remediation is a portable command-line product, designed to detect and remove malicious software from endpoints. Malwarebytes Breach Remediation requires no installation on the endpoints, simply distribute the files to the endpoints and execute the program.
For more information, please see the Malwarebytes Breach Remediation Windows Administrator Guide.
Features
Malwarebytes Breach Remediation for HCL BigFix provides the following features:
- BigFix Fixlet to download and execute scans on managed endpoints
- BigFix Analysis to return scan results to the BigFix Server
- Custom Web Reports to display the results
Prerequisites
In order to use Malwarebytes Breach Remediation for HCL BigFix, the following is required:
- HCL BigFix platform 9.x and later, including Web Reports
- Malwarebytes Nebula subscription to one of the following products:
- Malwarebytes Incident Response
- Malwarebytes Endpoint Protection
- Malwarebytes Endpoint Detection and Response
- Your Malwarebytes Nebula product license key
Installation
Follow these steps to import the Malwarebytes Breach Remediation content into the BigFix platform.
Download the Malwarebytes Breach Remediation for HCL BigFix zip file
- Download the Malwarebytes Breach Remediation for HCL BigFix file here.
- Unzip the file malwarebytes_bigfix.zip. The files contained in the zip file are:
- mwb_fixlets.bes - Contains both the task and analysis.
- mwb_mbbr.beswrpt - Contains the custom web reports.
Create a custom BigFix site
It is a good practice and recommended to create a custom site to host the imported Malwarebytes content. Future content can be imported later into this same custom site.
- Log in to BigFix.
- Create a custom site. Go to Tools > Create Custom Siteā¦
- Name the custom site Malwarebytes.
Import the Fixlet
- Double-click on the file mwb_fixlets.bes to import the Fixlet into BigFix.
- Ensure both the task and analysis are created in the new custom site.
- Both items are available from the BigFix Console.
Import custom Web Reports
- Log into Web Reports and select Report List > Import report
- Import the file mwb_mbbr.beswrpt as XML.
- After performing threat scans, the Web Reports screen displays the results.
Enter your Malwarebytes Nebula license key in BigFix
To view your Malwarebytes Nebula license key:
- Login to the Malwarebytes Nebula platform.
- Go to Profile > License Information.
- Copy your license key.
- Open BigFix and navigate to your custom site, All Content > Sites > Malwarebytes.
- Click Fixlets and Tasks.
- On the Description tab, paste or enter your license key in the License Key field.
Copy the Malwarebytes Breach Remediation task to adjust options
Malwarebytes Breach Remediation provides many options and features. In order to fine-tune Malwarebytes Breach Remediation for HCL BigFix for your environment, we suggest the following:
- Make a copy of the initial BigFix task.
- Use the copy to fine-tune how the task works:
- In the copied task, edit the BigFix action script.
- Customize the command line options for Malwarebytes Breach Remediation.
- Refer to the Malwarebytes Breach Remediation Windows Administrator Guide for details and more information.
