Monitoring Rules

Use the Monitoring Rules tab to view and manage monitoring rules. Monitoring rules come from the following sources:

  • Trend Micro

    Displays monitoring rules provided by Trend Micro. The following table lists all the details available for review:

    Table 1. Trend Micro monitoring rules

    Column name

    Description

    Rule Name

    Name of the rule

    Version

    Version information for the rule

    Latest Update

    Date and time when the rule was uploaded

    Action

    Commands available to interact with the rule

  • User defined

    Shows all the custom monitoring rules uploaded by the user. The following table lists all the details available for review:

    Table 2. User defined monitoring rules

    Column name

    Description

    Status

    Specifies if the rule is disabled or enabled

    Rule Name

    Name of the uploaded rule

    Description

    A short user-defined description of the uploaded rule

    Uploaded

    Date and time when the rule was uploaded

    Use the following options to manage the table:

    • Click Upload IOC Rule to select and upload a new monitoring rule. Ensure that the monitoring rule uses the correct IOC format.

      For details, see Supported IOC Indicator Terms.

    • Select a rule, and click Toggle Status to toggle the status of the rule.

    • Select a rule, and click Remove to remove the rule from list.