The following table outlines the information available for each custom filter.
Field
|
Description
|
||
Filter name
|
The name of the custom filter
|
||
Description
|
Short description or notes of the custom filter
|
||
Risk level
|
The risk level of the custom filter
|
||
Filter ID
|
The unique identifier of the custom filter
|
||
Event type / Event ID
|
The event type and ID targeted by the custom filter
|
||
Query
|
The query used to detect events
|
||
Associated model
|
Custom detection models that employ the filter
|