Microsoft Advanced Threat Analytics 1.8 – felülbírálások nyelvi csomagja

Microsoft.AdvancedThreatAnalytics.1_8.Overrides :: 1.9.2.0 (Management Pack)

Felügyeleti csomag a Microsoft Advanced Threat Analytics 1.8-as verziójához – felülbírálások

Összegzés

Az Advanced Threat Analytics 1.8 felülbírálásokat tartalmazó felügyeleti csomagja. A felügyeleti csomag lehetővé teszi a biztonsági monitorozási szabályok használatát.

Management Pack Elements

Rule Property Overrides (22)

 IDContextTarget
Microsoft.AdvancedThreatAnalytics.1_8.Center.AbnormalBehaviorSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.Center.AbnormalBehaviorSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.CenterMicrosoft.AdvancedThreatAnalytics.1_8.Center.AbnormalBehaviorSuspiciousActivity
Microsoft.AdvancedThreatAnalytics.1_8.Center.AbnormalProtocolSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.Center.AbnormalProtocolSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.CenterMicrosoft.AdvancedThreatAnalytics.1_8.Center.AbnormalProtocolSuspiciousActivity
Microsoft.AdvancedThreatAnalytics.1_8.Center.AbnormalSensitiveGroupMembershipChangeSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.Center.AbnormalSensitiveGroupMembershipChangeSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.CenterMicrosoft.AdvancedThreatAnalytics.1_8.Center.AbnormalSensitiveGroupMembershipChangeSuspiciousActivity
Microsoft.AdvancedThreatAnalytics.1_8.Center.AbnormalVpnSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.Center.AbnormalVpnSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.CenterMicrosoft.AdvancedThreatAnalytics.1_8.Center.AbnormalVpnSuspiciousActivity
Microsoft.AdvancedThreatAnalytics.1_8.Center.AccountEnumerationSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.Center.AccountEnumerationSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.CenterMicrosoft.AdvancedThreatAnalytics.1_8.Center.AccountEnumerationSuspiciousActivity
Microsoft.AdvancedThreatAnalytics.1_8.Center.BruteForceSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.Center.BruteForceSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.CenterMicrosoft.AdvancedThreatAnalytics.1_8.Center.BruteForceSuspiciousActivity
Microsoft.AdvancedThreatAnalytics.1_8.Center.ComputerPreauthenticationFailedSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.Center.ComputerPreauthenticationFailedSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.CenterMicrosoft.AdvancedThreatAnalytics.1_8.Center.ComputerPreauthenticationFailedSuspiciousActivity
Microsoft.AdvancedThreatAnalytics.1_8.Center.DirectoryServicesReplicationSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.Center.DirectoryServicesReplicationSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.CenterMicrosoft.AdvancedThreatAnalytics.1_8.Center.DirectoryServicesReplicationSuspiciousActivity
Microsoft.AdvancedThreatAnalytics.1_8.Center.DnsReconnaissanceSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.Center.DnsReconnaissanceSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.CenterMicrosoft.AdvancedThreatAnalytics.1_8.Center.DnsReconnaissanceSuspiciousActivity
Microsoft.AdvancedThreatAnalytics.1_8.Center.EncryptionDowngradeSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.Center.EncryptionDowngradeSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.CenterMicrosoft.AdvancedThreatAnalytics.1_8.Center.EncryptionDowngradeSuspiciousActivity
Microsoft.AdvancedThreatAnalytics.1_8.Center.EnumerateSessionsSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.Center.EnumerateSessionsSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.CenterMicrosoft.AdvancedThreatAnalytics.1_8.Center.EnumerateSessionsSuspiciousActivity
Microsoft.AdvancedThreatAnalytics.1_8.Center.ForgedPacSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.Center.ForgedPacSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.CenterMicrosoft.AdvancedThreatAnalytics.1_8.Center.ForgedPacSuspiciousActivity
Microsoft.AdvancedThreatAnalytics.1_8.Center.GoldenTicketSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.Center.GoldenTicketSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.CenterMicrosoft.AdvancedThreatAnalytics.1_8.Center.GoldenTicketSuspiciousActivity
Microsoft.AdvancedThreatAnalytics.1_8.Center.HoneytokenActivitySuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.Center.HoneytokenActivitySuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.CenterMicrosoft.AdvancedThreatAnalytics.1_8.Center.HoneytokenActivitySuspiciousActivity
Microsoft.AdvancedThreatAnalytics.1_8.Center.LdapBruteForceSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.Center.LdapBruteForceSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.CenterMicrosoft.AdvancedThreatAnalytics.1_8.Center.LdapBruteForceSuspiciousActivity
Microsoft.AdvancedThreatAnalytics.1_8.Center.LdapCleartextPasswordSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.Center.LdapCleartextPasswordSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.CenterMicrosoft.AdvancedThreatAnalytics.1_8.Center.LdapCleartextPasswordSuspiciousActivity
Microsoft.AdvancedThreatAnalytics.1_8.Center.MassiveObjectDeletionSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.Center.MassiveObjectDeletionSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.CenterMicrosoft.AdvancedThreatAnalytics.1_8.Center.MassiveObjectDeletionSuspiciousActivity
Microsoft.AdvancedThreatAnalytics.1_8.Center.PassTheHashSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.Center.PassTheHashSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.CenterMicrosoft.AdvancedThreatAnalytics.1_8.Center.PassTheHashSuspiciousActivity
Microsoft.AdvancedThreatAnalytics.1_8.Center.PassTheTicketSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.Center.PassTheTicketSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.CenterMicrosoft.AdvancedThreatAnalytics.1_8.Center.PassTheTicketSuspiciousActivity
Microsoft.AdvancedThreatAnalytics.1_8.Center.RemoteExecutionSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.Center.RemoteExecutionSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.CenterMicrosoft.AdvancedThreatAnalytics.1_8.Center.RemoteExecutionSuspiciousActivity
Microsoft.AdvancedThreatAnalytics.1_8.Center.RetrieveDataProtectionBackupKeySuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.Center.RetrieveDataProtectionBackupKeySuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.CenterMicrosoft.AdvancedThreatAnalytics.1_8.Center.RetrieveDataProtectionBackupKeySuspiciousActivity
Microsoft.AdvancedThreatAnalytics.1_8.Center.SamrReconnaissanceSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.Center.SamrReconnaissanceSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_8.CenterMicrosoft.AdvancedThreatAnalytics.1_8.Center.SamrReconnaissanceSuspiciousActivity