Vulerabilities

Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊

↑ Back to Content Index

---

This query searches for all the vulerabilities that RidgeBot identified

Attribute	Value
Type	Analytic Rule
Solution	RidgeSecurity
ID	d096643d-6789-4c74-8893-dd3fc8a94069
Severity	High
Status	Available
Kind	Scheduled
Tactics	Execution, InitialAccess, PrivilegeEscalation
Techniques	T1189, T1059, T1053, T1548
Required Connectors	RidgeBotDataConnector, CefAma
Source	View on GitHub

Tables Used

This content item queries data from the following tables:

Table	Selection Criteria	Transformations	Ingestion API	Lake-Only
CommonSecurityLog	DeviceEventClassID startswith "40" DeviceVendor == "RidgeSecurity"	✓	✓	?

---

Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊

↑ Back to Analytic Rules · Back to RidgeSecurity