Home
  •  

All Rule Property Overrides in category: Advanced Threat Analytics (ATA)

IDManagement Pack NameManagement Pack Version
Microsoft.AdvancedThreatAnalytics.1_7.Center.AbnormalBehaviorSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_7.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_7.Center.AbnormalSmbSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_7.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_7.Center.AccountEnumerationSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_7.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_7.Center.BruteForceSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_7.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_7.Center.ComputerPreauthenticationFailedSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_7.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_7.Center.DirectoryServicesReplicationSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_7.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_7.Center.DnsReconnaissanceSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_7.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_7.Center.EncryptionDowngradeSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_7.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_7.Center.EncryptionDowngradeSuspiciousActivity_GoldenTicket.OverrideMicrosoft.AdvancedThreatAnalytics.1_7.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_7.Center.EncryptionDowngradeSuspiciousActivity_OverpasstheHash.OverrideMicrosoft.AdvancedThreatAnalytics.1_7.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_7.Center.EncryptionDowngradeSuspiciousActivity_SkeletonKey.OverrideMicrosoft.AdvancedThreatAnalytics.1_7.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_7.Center.EnumerateSessionsSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_7.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_7.Center.ForgedPacSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_7.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_7.Center.HoneytokenActivitySuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_7.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_7.Center.LdapSimpleBindCleartextPasswordSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_7.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_7.Center.MassiveObjectDeletionSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_7.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_7.Center.PassTheHashSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_7.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_7.Center.PassTheTicketSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_7.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_7.Center.RemoteExecutionSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_7.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_7.Center.RetrieveDataProtectionBackupKeySuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_7.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_7.Center.SamrReconnaissanceSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_7.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_8.Center.AbnormalBehaviorSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_8.Center.AbnormalProtocolSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_8.Center.AbnormalSensitiveGroupMembershipChangeSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_8.Center.AbnormalVpnSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_8.Center.AccountEnumerationSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_8.Center.BruteForceSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_8.Center.ComputerPreauthenticationFailedSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_8.Center.DirectoryServicesReplicationSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_8.Center.DnsReconnaissanceSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_8.Center.EncryptionDowngradeSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_8.Center.EnumerateSessionsSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_8.Center.ForgedPacSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_8.Center.GoldenTicketSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_8.Center.HoneytokenActivitySuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_8.Center.LdapBruteForceSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_8.Center.LdapCleartextPasswordSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_8.Center.MassiveObjectDeletionSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_8.Center.PassTheHashSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_8.Center.PassTheTicketSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_8.Center.RemoteExecutionSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_8.Center.RetrieveDataProtectionBackupKeySuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_8.Center.SamrReconnaissanceSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_9.Center.AbnormalBehaviorSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_9.Center.AbnormalProtocolSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_9.Center.AbnormalSensitiveGroupMembershipChangeSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_9.Center.AbnormalVpnSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_9.Center.AccountEnumerationSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_9.Center.BruteForceSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_9.Center.DirectoryServicesReplicationSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_9.Center.DnsReconnaissanceSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_9.Center.EncryptionDowngradeSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_9.Center.EnumerateSessionsSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_9.Center.ForgedPacSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_9.Center.GoldenTicketSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_9.Center.HoneytokenActivitySuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_9.Center.LdapBruteForceSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_9.Center.MaliciousServiceCreationSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_9.Center.MassiveObjectDeletionSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_9.Center.PassTheHashSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_9.Center.PassTheTicketSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_9.Center.RemoteExecutionSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_9.Center.RetrieveDataProtectionBackupKeySuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.Overrides1.9.2.0
Microsoft.AdvancedThreatAnalytics.1_9.Center.SamrReconnaissanceSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.Overrides1.9.2.0