Web Application attack detected

Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊

↑ Back to Content Index

---

Identifies Web application attack in Azure Firewall IDPS logs.

Attribute	Value
Type	Analytic Rule
Solution	Azure Firewall
ID	8159a8d2-13a5-49af-847b-e062c45ab92b
Severity	High
Status	Available
Kind	Scheduled
Tactics	InitialAccess
Techniques	T1190
Required Connectors	AzureFirewall
Source	View on GitHub

Tables Used

This content item queries data from the following tables:

Table	Transformations	Ingestion API	Lake-Only
AZFWIdpsSignature	✓	✗	?

---

Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊

↑ Back to Analytic Rules · Back to Azure Firewall