Module linguistique de Microsoft Advanced Threat Analytics 1.9 - Remplacements

Microsoft.AdvancedThreatAnalytics.1_9.Overrides :: 1.9.0.0 (Management Pack)

Pack d'administration de Microsoft Advanced Threat Analytics 1.9 - Remplacements

Résumé

Il s'agit du pack d'administration Remplacements d'Advanced Threat Analytics 1.9. Ce pack d'administration active les règles de monitoring de sécurité.

Management Pack Elements

Rule Property Overrides (21)

 IDContextTarget
Microsoft.AdvancedThreatAnalytics.1_9.Center.AbnormalBehaviorSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.Center.AbnormalBehaviorSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.CenterMicrosoft.AdvancedThreatAnalytics.1_9.Center.AbnormalBehaviorSuspiciousActivity
Microsoft.AdvancedThreatAnalytics.1_9.Center.AbnormalProtocolSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.Center.AbnormalProtocolSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.CenterMicrosoft.AdvancedThreatAnalytics.1_9.Center.AbnormalProtocolSuspiciousActivity
Microsoft.AdvancedThreatAnalytics.1_9.Center.AbnormalSensitiveGroupMembershipChangeSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.Center.AbnormalSensitiveGroupMembershipChangeSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.CenterMicrosoft.AdvancedThreatAnalytics.1_9.Center.AbnormalSensitiveGroupMembershipChangeSuspiciousActivity
Microsoft.AdvancedThreatAnalytics.1_9.Center.AbnormalVpnSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.Center.AbnormalVpnSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.CenterMicrosoft.AdvancedThreatAnalytics.1_9.Center.AbnormalVpnSuspiciousActivity
Microsoft.AdvancedThreatAnalytics.1_9.Center.AccountEnumerationSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.Center.AccountEnumerationSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.CenterMicrosoft.AdvancedThreatAnalytics.1_9.Center.AccountEnumerationSuspiciousActivity
Microsoft.AdvancedThreatAnalytics.1_9.Center.BruteForceSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.Center.BruteForceSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.CenterMicrosoft.AdvancedThreatAnalytics.1_9.Center.BruteForceSuspiciousActivity
Microsoft.AdvancedThreatAnalytics.1_9.Center.DirectoryServicesReplicationSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.Center.DirectoryServicesReplicationSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.CenterMicrosoft.AdvancedThreatAnalytics.1_9.Center.DirectoryServicesReplicationSuspiciousActivity
Microsoft.AdvancedThreatAnalytics.1_9.Center.DnsReconnaissanceSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.Center.DnsReconnaissanceSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.CenterMicrosoft.AdvancedThreatAnalytics.1_9.Center.DnsReconnaissanceSuspiciousActivity
Microsoft.AdvancedThreatAnalytics.1_9.Center.EncryptionDowngradeSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.Center.EncryptionDowngradeSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.CenterMicrosoft.AdvancedThreatAnalytics.1_9.Center.EncryptionDowngradeSuspiciousActivity
Microsoft.AdvancedThreatAnalytics.1_9.Center.EnumerateSessionsSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.Center.EnumerateSessionsSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.CenterMicrosoft.AdvancedThreatAnalytics.1_9.Center.EnumerateSessionsSuspiciousActivity
Microsoft.AdvancedThreatAnalytics.1_9.Center.ForgedPacSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.Center.ForgedPacSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.CenterMicrosoft.AdvancedThreatAnalytics.1_9.Center.ForgedPacSuspiciousActivity
Microsoft.AdvancedThreatAnalytics.1_9.Center.GoldenTicketSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.Center.GoldenTicketSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.CenterMicrosoft.AdvancedThreatAnalytics.1_9.Center.GoldenTicketSuspiciousActivity
Microsoft.AdvancedThreatAnalytics.1_9.Center.HoneytokenActivitySuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.Center.HoneytokenActivitySuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.CenterMicrosoft.AdvancedThreatAnalytics.1_9.Center.HoneytokenActivitySuspiciousActivity
Microsoft.AdvancedThreatAnalytics.1_9.Center.LdapBruteForceSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.Center.LdapBruteForceSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.CenterMicrosoft.AdvancedThreatAnalytics.1_9.Center.LdapBruteForceSuspiciousActivity
Microsoft.AdvancedThreatAnalytics.1_9.Center.MaliciousServiceCreationSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.Center.MaliciousServiceCreationSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.CenterMicrosoft.AdvancedThreatAnalytics.1_9.Center.MaliciousServiceCreationSuspiciousActivity
Microsoft.AdvancedThreatAnalytics.1_9.Center.MassiveObjectDeletionSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.Center.MassiveObjectDeletionSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.CenterMicrosoft.AdvancedThreatAnalytics.1_9.Center.MassiveObjectDeletionSuspiciousActivity
Microsoft.AdvancedThreatAnalytics.1_9.Center.PassTheHashSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.Center.PassTheHashSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.CenterMicrosoft.AdvancedThreatAnalytics.1_9.Center.PassTheHashSuspiciousActivity
Microsoft.AdvancedThreatAnalytics.1_9.Center.PassTheTicketSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.Center.PassTheTicketSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.CenterMicrosoft.AdvancedThreatAnalytics.1_9.Center.PassTheTicketSuspiciousActivity
Microsoft.AdvancedThreatAnalytics.1_9.Center.RemoteExecutionSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.Center.RemoteExecutionSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.CenterMicrosoft.AdvancedThreatAnalytics.1_9.Center.RemoteExecutionSuspiciousActivity
Microsoft.AdvancedThreatAnalytics.1_9.Center.RetrieveDataProtectionBackupKeySuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.Center.RetrieveDataProtectionBackupKeySuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.CenterMicrosoft.AdvancedThreatAnalytics.1_9.Center.RetrieveDataProtectionBackupKeySuspiciousActivity
Microsoft.AdvancedThreatAnalytics.1_9.Center.SamrReconnaissanceSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.Center.SamrReconnaissanceSuspiciousActivity.OverrideMicrosoft.AdvancedThreatAnalytics.1_9.CenterMicrosoft.AdvancedThreatAnalytics.1_9.Center.SamrReconnaissanceSuspiciousActivity