2_ds_check_point_avanan.md
June 14, 2023 · View on GitHub
| Use-Case | Event Types/Parsers | MITRE ATT&CK® TTP | Content |
|---|---|---|---|
| Privileged Activity | dlp-email-alert-in ↳avanan-dlp-email-alert-4 dlp-email-alert-in-failed ↳avanan-dlp-email-alert-4 dlp-email-alert-out ↳avanan-dlp-email-alert-4 dlp-email-alert-out-failed ↳avanan-dlp-email-alert-4 security-alert ↳avanan-security-alert-1 ↳avanan-security-alert | T1068 - Exploitation for Privilege Escalation T1078 - Valid Accounts |
|