Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊
This analytic rule is looking for new attacker behaviors observed by the Vectra Platform. The intent is to create entries in the SecurityAlert table for every new detection attached to an entity monitored by the Vectra Platform
| Attribute | Value |
|---|---|
| Type | Analytic Rule |
| Solution | Vectra XDR |
| ID | e796701f-6b39-4c54-bf8a-1d543a990784 |
| Severity | Medium |
| Status | Available |
| Kind | Scheduled |
| Tactics | Persistence |
| Techniques | T1546 |
| Required Connectors | VectraXDR |
| Source | View on GitHub |
This content item queries data from the following tables:
| Table | Transformations | Ingestion API | Lake-Only |
|---|---|---|---|
Detections_Data_CL |
? | ✓ | ? |
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊