InspectDetection
InspectDetection is used in Incident Rules to specify a identifier of a certain rule or group of rules that were triggered.
Property |
Type |
Description |
Example |
|---|---|---|---|
RuleCategory |
String |
Matches the rule by the category |
File system |
RuleGuid |
String |
Matches the rule by the GUID |
b7ddfd8b-eb96-4f9e-a3fe-1517aa653b0d |
RuleName |
String |
Matches the rule by the name |
F1006 |
RuleSeverity |
Int/Symbols |
Matches the rule by the severity |
Possible values are: •Information—1 •Warning—2 •Threat—3 |
Supported Operations and their components:
|
InspectDetection |
|---|---|
Detection |
X |