|
About the InsightIDR category
|
|
0
|
279
|
June 5, 2020
|
|
MSDT "Follina" Detections
|
|
5
|
466
|
July 4, 2022
|
|
Protocol poisoning detected by asset from 0.0.0.0
|
|
1
|
12
|
July 4, 2022
|
|
CloudTrail SQS or API?
|
|
2
|
21
|
July 1, 2022
|
|
Cisco Umbrella Event Source Troubleshooting
|
|
0
|
20
|
July 1, 2022
|
|
Two Domain in same platform
|
|
1
|
28
|
July 1, 2022
|
|
Investigation Count Dashboard
|
|
3
|
187
|
July 1, 2022
|
|
Connection Paths - Data Collection Management
|
|
5
|
554
|
June 30, 2022
|
|
InsightIDR - Alert Lateral Movement - Local Credentials
|
|
1
|
77
|
June 28, 2022
|
|
Assets API
|
|
35
|
567
|
June 27, 2022
|
|
InsightIDR Log Search: export only selected columns to CSV
|
|
4
|
95
|
June 25, 2022
|
|
Idle log source monitoring
|
|
1
|
117
|
June 22, 2022
|
|
Case insensitive search but not partial match
|
|
5
|
98
|
June 20, 2022
|
|
InsightIDR built-in alerts notifications
|
|
3
|
121
|
June 16, 2022
|
|
Moving event sources out of Qradar?
|
|
2
|
86
|
June 15, 2022
|
|
Log Search Table View Scrolling Update
|
|
0
|
124
|
June 15, 2022
|
|
Data Export | ServiceNow
|
|
1
|
66
|
June 14, 2022
|
|
Word Or Excel Spawns RunDLL32
|
|
6
|
148
|
June 13, 2022
|
|
DCSYNC attack or crackmapexec --ntds
|
|
0
|
63
|
June 10, 2022
|
|
Credential Access - Comsvc Minidump
|
|
0
|
60
|
June 9, 2022
|
|
Password spraying - rules for sustained testing
|
|
0
|
65
|
June 9, 2022
|
|
Exposure To Notes Over API
|
|
0
|
81
|
June 9, 2022
|
|
Sentinel incidents to IDR
|
|
2
|
133
|
June 7, 2022
|
|
Insight Agent - data collected
|
|
4
|
357
|
June 7, 2022
|
|
Insight Agent previous version folders
|
|
0
|
60
|
June 2, 2022
|
|
Azure AD No LDAP
|
|
1
|
157
|
May 31, 2022
|
|
Collect logs from Azure
|
|
1
|
183
|
May 31, 2022
|
|
Question About Enhancements to Data Exporters and IDR API
|
|
8
|
202
|
May 27, 2022
|
|
Azure Event Hubs
|
|
7
|
561
|
May 19, 2022
|
|
InsightIDR - Mobile site
|
|
26
|
704
|
May 16, 2022
|