Rules by Product and UseCase
March 11, 2025 · View on GitHub
Vendor: Suricata
Product: Suricata
Use-Case: Lateral Movement
| Rules | Models | MITRE ATT&CK® TTPs | Activity Types | Parsers |
|---|---|---|---|---|
| 2 | 0 | 2 | 1 | 1 |
| Event Type | Rules | Models |
|---|---|---|
| security-alert | T1027 - Obfuscated Files or Information ↳ A-ALERT-DL: DL Correlation rule alert on asset ↳ A-ALERT-Correlation-Rule: Correlation rule alert on asset T1027.005 - Obfuscated Files or Information: Indicator Removal from Tools ↳ A-ALERT-DL: DL Correlation rule alert on asset ↳ A-ALERT-Correlation-Rule: Correlation rule alert on asset |