Microsoft System Center Advisor Threat Event Collection

Microsoft.IntelligencePacks.ThreatDetection :: 8.0.1.18 (Management Pack)

Management pack to collect security events for Security Intelligence

• Show Management Pack XML
• Get Management Pack data in Excel format
• Microsoft.IntelligencePacks.ThreatDetection.mpb

Management Pack Elements

Rules (10)

	DisplayName	ID	Target	Category	Enabled	Alert Generate
	Microsoft Azure Security Center policies runner	Microsoft.RomeDetection.EnableAscPolicies	Microsoft.Windows.Computer	Custom	False	False
	Monitoring - Microsoft Azure Security Center policies runner	Microsoft.RomeDetection.EnableAscPolicies.CollectRuleErrors	Microsoft.Windows.Computer	Custom	False	False
	Monitoring - AppLocker events of type EXE and DLL	Microsoft.SystemCenter.AppLockerEventExeAndDll.CollectRuleErrors	Microsoft.Windows.Computer	Custom	False	False
	Monitoring - AppLocker events of type MSI and Script	Microsoft.SystemCenter.AppLockerEventMsiAndScript.CollectRuleErrors	Microsoft.Windows.Computer	Custom	False	False
	Collect AppLocker Events	Microsoft.SystemCenter.CollectAppLockerEventExeAndDll	Microsoft.Windows.Computer	EventCollection	False	False
	Collect AppLocker Events	Microsoft.SystemCenter.CollectAppLockerEventMsiAndScript	Microsoft.Windows.Computer	EventCollection	False	False
	Collect Security Events	Microsoft.SystemCenter.CollectThreatDetectionSecurityEvent	Microsoft.Windows.Computer	EventCollection	False	False
	Collect System Events	Microsoft.SystemCenter.CollectThreatDetectionSystemEvent	Microsoft.Windows.Computer	EventCollection	False	False
	Monitoring - Threat detection security events	Microsoft.SystemCenter.ThreatDetection.CollectRuleErrors.SecurityEvent	Microsoft.Windows.Computer	Custom	False	False
	Monitoring - Threat detection system events	Microsoft.SystemCenter.ThreatDetection.CollectRuleErrors.SystemEvent	Microsoft.Windows.Computer	Custom	False	False