Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊
The security analytic rule is designed to scrutinize network activity involving private IP addresses within an organization's internal network. By filtering log entries to include only those where either the source or the destination IP is private, the rule focuses on internal communications that could indicate unauthorized access, internal threats, or other security anomalies.
| Attribute | Value |
|---|---|
| Type | Analytic Rule |
| Solution | SINEC Security Guard |
| ID | d41fa731-45a2-4b23-bb1d-29896fbc5298 |
| Severity | HIGH |
| Kind | NRT |
| Tactics | Impact |
| Techniques | T1486 |
| Source | View on GitHub |
This content item queries data from the following tables:
| Table | Transformations | Ingestion API | Lake-Only |
|---|---|---|---|
SINECSecurityGuard_CL |
? | ✓ | ? |
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊