๐จThreat Alerts
Last updated
Last updated
TEIREN SIEM features a robust Threat Alerts system. This system identifies and highlights potential threats based on a set of default rule sets established by TEIREN SIEM. Additionally, users have the flexibility to create and implement their own rule sets, allowing for a more customized and relevant threat detection process.
Upon detection, users can delve into the specifics of each threat through our comprehensive detail page, which offers two distinct views for analysis - Graph Analysis and Table Details.
The Graph Analysis tab provides a visual representation of the detected threats. It showcases which logs were flagged by the rule sets and delineates the actions related to the account responsible for the suspicious activity. This graphical interface allows users to identify patterns and connections more intuitively, aiding in a more holistic analysis.
For those who prefer a more traditional view, the Table Details tab presents the same information as the Graph Analysis but in a structured table format. This tab lays out the details of each log from the graph, providing a more straightforward and familiar way for users to understand and navigate through the data. This information corresponds to the information in log management log details.
TEIREN SIEM Threat Alerts feature aims to equip users with all necessary information to understand and respond to potential threats effectively.
