Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · Logic Apps · 📊
Creates one incident per active Google Security Operations detection alert in Microsoft Sentinel. Covers all rule types and severity levels with no additional filtering, providing broad visibility across all Google SecOps alerts. Use alongside focused rules for complete detection coverage.
| Attribute | Value |
|---|---|
| Type | Analytic Rule |
| Solution | GoogleSecOps |
| ID | f6b0c254-8f7d-4a1b-d5c2-0e4a6b9f2d8a |
| Severity | Medium |
| Status | Available |
| Kind | Scheduled |
| Tactics | InitialAccess, DefenseEvasion, LateralMovement, PrivilegeEscalation, CommandAndControl |
| Techniques | T1078, T1021, T1566 |
| Required Connectors | GSDetectionAlerts |
| Source | View on GitHub |
This content item queries data from the following tables:
| Table | Transformations | Ingestion API | Lake-Only |
|---|---|---|---|
DetectionAlerts_CL |
? | ✓ | ? |
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · Logic Apps · 📊