Trigger for IPv6to4/Protocol 41 and Teredo (UDP 3544)
|
|
0
|
35
|
June 1, 2023
|
Invalid argument provided. String or Buffer required error
|
|
2
|
88
|
May 17, 2023
|
Audit Log by SIEM Connector
|
|
1
|
113
|
May 3, 2023
|
Trigger PCAP with Alert/Detection
|
|
1
|
144
|
April 25, 2023
|
MSRPC Records
|
|
2
|
1479
|
April 25, 2023
|
Need to creatre a TRIGGER to pull TLS version and Dest Port from ExtraHop
|
|
1
|
154
|
March 29, 2023
|
Github Triggers and Bundles
|
|
2
|
2663
|
December 24, 2016
|
How to create a trigger which the client is not one, but subnet?
|
|
2
|
255
|
February 15, 2023
|
Custom Detection: Newly Discovered Asset
|
|
0
|
561
|
August 26, 2022
|
Unable to commit detection
|
|
5
|
687
|
August 3, 2022
|
Commit detection adjustment in triggers. (Identity key and lasting duration of detection)
|
|
1
|
610
|
June 22, 2022
|
Custom Detection Example - Newly created SSL certificate
|
|
0
|
650
|
May 2, 2022
|
Help in identifying data obfuscation(protocol impersonation using cookie)
|
|
9
|
1231
|
February 9, 2022
|
CVE-2021-44228 detection
|
|
2
|
1331
|
December 14, 2021
|
Handing DETECTION_UPDATE during for ExtraHop-Demisto timeout
|
|
1
|
965
|
October 12, 2021
|
Detecting Unauthorized Remote Access Trigger
|
|
0
|
1087
|
October 7, 2021
|
Mapping HTTP.payload information with Src/Dst IP/Port
|
|
5
|
1356
|
September 20, 2021
|
Testing a trigger - forcing a detection?
|
|
2
|
1294
|
June 22, 2021
|
Detection: CVE-2021-22991
|
|
3
|
1610
|
March 12, 2021
|
External javascript libraries, decompression, ebcdic
|
|
7
|
3445
|
January 21, 2021
|
Detection SIEM Connector Description Issue
|
|
8
|
1565
|
January 4, 2021
|
Cisco AnyConnect Secure Mobility Client Arbitrary Code Execution Vulnerability
|
|
0
|
1503
|
November 6, 2020
|
Throttle Triggered Precision PCAP
|
|
2
|
1478
|
October 15, 2020
|
DNS Answers in ODS feed to Splunk
|
|
2
|
1465
|
October 9, 2020
|
Got Bots? We got an App for that!
|
|
1
|
2751
|
September 16, 2020
|
TIMER_30SEC event
|
|
2
|
1482
|
August 6, 2020
|
Honey Token Detection across multiple protocols
|
|
0
|
2033
|
June 4, 2020
|
lookupByIP in L2 discovery
|
|
3
|
1510
|
May 18, 2020
|
NDR POW (2/27): POSH Watcher
|
|
6
|
2581
|
May 14, 2020
|
Critical Devices - EXA Connector Trigger
|
|
1
|
1829
|
March 18, 2020
|