2022-02-05から1日間の記事一覧

2022-02-05

LetsDefend level 1 alert SOC121 - Proxy - Malicious Executable File Detected event-id 53

LetsDefend

Details playbook Collection Data Search Log Analyze URL Address Has Anyone Accessed IP/URL/Domain? Add Artifacts End Details EventID: 53 Event Time: Feb. 7, 2021, 12:19 p.m. Rule: SOC121 - Proxy - Malicious Executable File Detected Level: …

#LetsDefend

2022-02-05

LetsDefend level 1 alert SOC108 - Malicious Remote Access Software Detected event-id 54

LetsDefend

Details playbook Collection Data Search Log Analyze URL Address Add Artifacts End Details EventID: 54 Event Time: Feb. 7, 2021, 1:21 p.m. Rule: SOC108 - Malicious Remote Access Software Detected Level: Security Analyst Source Address 10.15…

#LetsDefend

4ensiX

FPと言ったものはFPを選んだが表示はTPになっていることに気づいた。

2022-02-05から1日間の記事一覧

LetsDefend level 1 alert SOC121 - Proxy - Malicious Executable File Detected event-id 53

LetsDefend level 1 alert SOC108 - Malicious Remote Access Software Detected event-id 54