Maps Microsoft Advanced Threat Analytics suspicious activity fields.
Microsoft Advanced Threat Analytics
- Details
- Content
- Dependencies
- Version History
Manage suspicious activities, monitoring alerts and entities on Microsoft ATA.
Classifiers
| Name | Description |
|---|---|
Microsoft Advanced Threat Analytics - Incoming Mapper | |
Microsoft Advanced Threat Analytics - Classification | Classifies Microsoft Advanced Threat Analytics suspicious activities |
Incident Fields
| Name | Description |
|---|---|
Suspicious Activity End Time | |
Suspicious Activity Severity | |
Suspicious Activity Status | |
Suspicious Activity Start Time | |
Suspicious Activity ID |
Layouts
| Name | Description |
|---|---|
Microsoft ATA Suspicious Activity |
Incident Types
| Name | Description |
|---|---|
Microsoft ATA Suspicious Activity |
Integrations
| Name | Description |
|---|---|
| Microsoft Advanced Threat Analytics | Use Microsoft Advanced Threat Analytics integration to manage suspicious activities, monitoring alerts and entities. |
Classifiers
| Name | Description |
|---|---|
Microsoft Advanced Threat Analytics - Incoming Mapper | Maps Microsoft Advanced Threat Analytics suspicious activity fields. |
Microsoft Advanced Threat Analytics - Classification | Classifies Microsoft Advanced Threat Analytics suspicious activities |
Incident Fields
| Name | Description |
|---|---|
Suspicious Activity End Time | |
Suspicious Activity Severity | |
Suspicious Activity Status | |
Suspicious Activity Start Time | |
Suspicious Activity ID |
Incident Types
| Name | Description |
|---|---|
Microsoft ATA Suspicious Activity |
Modeling Rules
| Name | Description |
|---|---|
Microsoft Advanced Threat Analytics |
Integrations
| Name | Description |
|---|---|
| Microsoft Advanced Threat Analytics | Use Microsoft Advanced Threat Analytics integration to manage suspicious activities, monitoring alerts and entities. |
Required Content Packs (1)
| Pack Name | Pack By |
|---|---|
| Base | By: Cortex XSOAR |
Optional Content Packs (1)
| Pack Name | Pack By |
|---|---|
| Common Types | By: Cortex XSOAR |
All level dependencies (0)
| Pack Name | Pack By |
|---|
1.0.13 - 4797511 (March 12, 2023)
- 25176
Download
Classifiers
Microsoft Advanced Threat Analytics - Classification
- Fixed the name of the classifier, so it will not contain a space at the beginning of its name.
Mappers
Microsoft Advanced Threat Analytics - Incoming Mapper
- Fixed the name of the mapper, so it will not contain a space at the beginning of its name.
- 25176
Download
1.0.2 - 2674843 (March 30, 2022)
Integrations
Microsoft Advanced Threat Analytics
- Added type validations and other internal code improvements.
PUBLISHER
Cortex
PLATFORMS
Cortex XSOARCortex XSIAM
INFO
| Certification | Certified | Read more |
| Supported By | Cortex | |
| Created | November 9, 2020 | |
| Last Release | March 12, 2023 |
WORKS WITH THE FOLLOWING INTEGRATIONS:
