Squadra Technologies SecRmm
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊
| Attribute | Value |
|---|---|
| Publisher | Squadra Technologies |
| Support Tier | Partner |
| Support Link | https://www.squadratechnologies.com/Contact.aspx |
| Categories | domains |
| Version | 3.0.0 |
| Author | Squadra Technologies |
| First Published | 2022-05-09 |
| Solution Folder | Squadra Technologies SecRmm |
The Squadra Technologies SecRMM solution for Microsoft Sentinel enables you to ingest USB security event data into Microsoft Sentinel.
Contents
Data Connectors
This solution provides 1 data connector(s):
🔶 CLv1: This connector ingests into a table that uses the legacy Custom Log V1 schema format with type-suffixed column names (e.g.
_s,_d,_b,_t,_g). Note: identification is based on column name suffixes which are also permitted in CLv2, so this classification may not always be accurate.
Tables Used
This solution uses 1 table(s):
| Table | Used By Connectors | Used By Content |
|---|---|---|
secRMM_CL 🔶 |
Squadra Technologies secRMM | Analytics, Workbooks |
🔶 CLv1: This table uses the legacy Custom Log V1 schema format with type-suffixed column names (e.g.
_s,_d,_b,_t,_g). Note: identification is based on column name suffixes which are also permitted in CLv2, so this classification may not always be accurate.
Content Items
This solution includes 2 content item(s):
| Content Type | Count |
|---|---|
| Analytic Rules | 1 |
| Workbooks | 1 |
Analytic Rules
| Name | Severity | Tactics | Tables Used |
|---|---|---|---|
| Removable storage ONLINE event from secRMM | High | Collection | secRMM_CL |
Workbooks
| Name | Tables Used |
|---|---|
| AzureSentinelWorkbookForRemovableStorageSecurityEvents | secRMM_CL |
Release Notes
| Version | Date Modified (DD-MM-YYYY) | Change History |
|---|---|---|
| 3.0.0 | 15-11-2025 | Added Analytical Rule |
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊