The Classic Packages category contains updates and repackagings of the original ArcSight Foundation content that shipped with ArcSight ESM prior to ESM v6.9. All the use cases there are either already migrated to Activate, or are in the process of being migrated.
The Brute Force Attacks for accounts is part of the upcoming Activate User Monitoring packages release, which is still in development and testing (working drafts of L1-User Monitoring documentation and L2-User Monitoring documentation are currently available on the Activate Wiki).
Hope this helps,
Prentice S. Hayes
Product Management, ArcSight | Connectors