Provides detailed information about possible indicators of attack detected on your network
|
Data |
Description |
|---|---|
|
Received |
The date and time Apex Central received the data from the managed product |
|
Generated |
The date and time the managed product generated the data |
|
Endpoint |
The name of the endpoint |
|
Product |
The name of the managed product or service Example: Apex One, ScanMail for Microsoft Exchange |
|
Managing Server Entity |
The display name of the managed product server in Apex Central to which the endpoint reports |
|
Detection Type |
The type of gray detection |
|
Rule |
The policy or rule that triggered the detection |
|
Details |
The JSON object containing additional information about the detection |
|
Tactics |
The MITRE ATT&CK™ tactic(s) detected For more information, see https://attack.mitre.org/tactics/enterprise/. |
|
Techniques |
The MITRE ATT&CK™ technique(s) detected For more information, see https://attack.mitre.org/techniques/enterprise/. |