| | DisplayName | Description | ID | Target | Category | Enabled | Instance Name | Counter Name | Frequency | Event_ID | Event Source | Alert Generate | Alert Severity | Alert Priority | Remotable | Event Log |
|---|
 | Microsoft Azure Security Center policies runner | Enable all the required policies for Azure Security Center detection engine | Microsoft.RomeDetection.EnableAscPolicies | Microsoft.Windows.Computer | Custom | False | | | 0 | 0 | | False | | | False | |
| Monitoring - Microsoft Azure Security Center policies runner | Collects error events from Microsoft Azure Security Center policies runner rules for monitoring purposes | Microsoft.RomeDetection.EnableAscPolicies.CollectRuleErrors | Microsoft.Windows.Computer | Custom | False | | | 0 | 0 | | False | | | False | |
| Monitoring - AppLocker events of type EXE and DLL | Collects error events from AppLocker events of type EXE and DLL rules for monitoring purposes | Microsoft.SystemCenter.AppLockerEventExeAndDll.CollectRuleErrors | Microsoft.Windows.Computer | Custom | False | | | 0 | 0 | | False | | | False | |
| Monitoring - AppLocker events of type MSI and Script | Collects error events from AppLocker events of type MSI and Script rules for monitoring purposes | Microsoft.SystemCenter.AppLockerEventMsiAndScript.CollectRuleErrors | Microsoft.Windows.Computer | Custom | False | | | 0 | 0 | | False | | | False | |
| Collect AppLocker Events | This rule collects events from the AppLocker EXE and DLL event log and sends them to the cloud | Microsoft.SystemCenter.CollectAppLockerEventExeAndDll | Microsoft.Windows.Computer | EventCollection | False | | | 0 | 0 | | False | | | True | Microsoft-Windows-AppLocker/EXE and DLL |
| Collect AppLocker Events | This rule collects events from the AppLocker MSI and Script event log and sends them to the cloud | Microsoft.SystemCenter.CollectAppLockerEventMsiAndScript | Microsoft.Windows.Computer | EventCollection | False | | | 0 | 0 | | False | | | True | Microsoft-Windows-AppLocker/MSI and Script |
| Collect Security Events | This rule collects events from the Security event log and sends them to the cloud | Microsoft.SystemCenter.CollectThreatDetectionSecurityEvent | Microsoft.Windows.Computer | EventCollection | False | | | 0 | 0 | | False | | | True | Security |
| Collect System Events | This rule collects events from the System event log and sends them to the cloud | Microsoft.SystemCenter.CollectThreatDetectionSystemEvent | Microsoft.Windows.Computer | EventCollection | False | | | 0 | 0 | | False | | | True | System |
| Monitoring - Threat detection security events | Collects error events from threat detection security event rules for monitoring purposes | Microsoft.SystemCenter.ThreatDetection.CollectRuleErrors.SecurityEvent | Microsoft.Windows.Computer | Custom | False | | | 0 | 0 | | False | | | False | |
| Monitoring - Threat detection system events | Collects error events from threat detection system event rules for monitoring purposes | Microsoft.SystemCenter.ThreatDetection.CollectRuleErrors.SystemEvent | Microsoft.Windows.Computer | Custom | False | | | 0 | 0 | | False | | | False | |
Home