Rules by Product and UseCase

April 15, 2026 · View on GitHub

Vendor: IMSS

Product: IMSS

Use-Case: Privileged Activity

RulesModelsMITRE ATT&CK® TTPsActivity TypesParsers
10114
Event TypeRulesModels
security-alertT1068 - Exploitation for Privilege Escalation
↳ ALERT-EXEC: Security violation by Executive

Contents

  1. 1Vendor: IMSS
  2. 1.1Product: IMSS
  3. 1.2Use-Case: Privileged Activity