Arctic Wolf Agent

As a component of Aurora Vulnerability Management (Aurora VM), Agent performs these routine scans to identify security risks:

Arctic Wolf Agent scans

As a component of Aurora Vulnerability Management (Aurora VM), Agent performs these routine scans to identify security risks:

Benchmark scans — Report when software or configuration best practices are not followed. Agent benchmark scan details include:
- Operation — Agent runs scans using Center for Internet Security (CIS) Benchmarks.
- Run time — Approximately 20 minutes.
- Performance —
  - Average CPU for single core CPU — 30%
    Note:
    - During highly intensive activities, you can see up to 100% of CPU utilization.
    - MacOS and Linux hosts may fully utilize idle CPU cycles.
  - Average memory utilization — 512 MB
  - Average bandwidth utilization per scan — 50 MB
  - Average disk space utilization — 75 MB
Vulnerability scans — Report exploitable vulnerabilities. Agent vulnerability scan details include:
- Operation — Agent runs scans using Open Vulnerability and Assessment Language (OVAL) vulnerability definitions and definitions are updated every four hours.
- Run time — Approximately 30-90 minutes.
- Performance —
  - Average CPU for single core CPU — 50%
    Note:
    - During highly intensive activities, you can see spikes up to 100% of CPU utilization.
    - MacOS and Linux hosts may fully utilize idle CPU cycles.
  - Average memory utilization — 512 MB
  - Average bandwidth utilization per scan — 50 MB
  - Average disk space utilization — 150 MB

Arctic Wolf Agent Managed Risk Managed Detection and Response (MDR) User Guide Public

Last updated: March 30, 2026