Vendor: AlgoSec

Product: Firewall Analyzer

Rules	Models	MITRE ATT&CK® TTPs	Event Types	Parsers
26	11	3	1	1

Use-Case	Event Types/Parsers	MITRE ATT&CK® TTP	Content
Compromised Credentials	network-alert ↳cef-algosec-network-alert	T1027.005 - Obfuscated Files or Information: Indicator Removal from Tools T1190 - Exploit Public Fasing Application	22 Rules 9 Models
Malware	network-alert ↳cef-algosec-network-alert	TA0002 - TA0002	4 Rules 2 Models

MITRE ATT&CK® Framework for Enterprise

Initial Access	Execution	Persistence	Privilege Escalation	Defense Evasion	Credential Access	Discovery	Lateral Movement	Collection	Command and Control	Exfiltration	Impact
Exploit Public Fasing Application				Obfuscated Files or Information: Indicator Removal from Tools Obfuscated Files or Information