Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊
Creates Sentinel incidents for critical/high Theom risks, associated with ruleId TRIS0005 (Theom has observed data stores that are both unencrypted and publicly accessible. Review if the data store and the data within should be publicly accessible. Additionally, encrypt the data at rest to comply with these CIS requirements)
| Attribute | Value |
|---|---|
| Type | Analytic Rule |
| Solution | Theom |
| ID | 6b93d8b1-40cf-4973-adaa-6f240df21ff1 |
| Severity | High |
| Status | Available |
| Kind | Scheduled |
| Tactics | Collection |
| Techniques | T1213, T1530 |
| Required Connectors | Theom |
| Source | View on GitHub |
This content item queries data from the following tables:
| Table | Transformations | Ingestion API | Lake-Only |
|---|---|---|---|
TheomAlerts_CL 🔶 |
? | ✓ | ? |
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊