SOCRadar High or Critical Severity Alarm

Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊

↑ Back to Content Index

---

Detects SOCRadar alarms with High or Critical severity levels that require immediate attention. These alarms typically indicate active threats such as credential exposure, ransomware mentions, or targeted attacks against the organization.

Attribute	Value
Type	Analytic Rule
Solution	SOCRadar
ID	8f3e2c5a-7b91-4d6a-9e8f-1c4a2b5d7e3f
Severity	High
Status	Available
Kind	Scheduled
Tactics	Reconnaissance, InitialAccess
Techniques	T1589, T1078
Source	View on GitHub

Tables Used

This content item queries data from the following tables:

Table	Transformations	Ingestion API	Lake-Only
SOCRadar_Alarms_CL	?	✓	?

---

Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊

↑ Back to Analytic Rules · Back to SOCRadar