Rules by Product and UseCase
April 15, 2026 · View on GitHub
Vendor: Postfix
Product: Postfix
Use-Case: Phishing
| Rules | Models | MITRE ATT&CK® TTPs | Activity Types | Parsers |
|---|---|---|---|---|
| 1 | 1 | 2 | 1 | 2 |
| Event Type | Rules | Models |
|---|---|---|
| dlp-email-alert-out | T1048 - Exfiltration Over Alternative Protocol ↳ EM-OD-A: Abnormal email domain for organization T1048.003 - Exfiltration Over Alternative Protocol: Exfiltration Over Unencrypted/Obfuscated Non-C2 Protocol ↳ EM-OD-A: Abnormal email domain for organization | • EM-OD: Domains per organization |