Azure
/
Azure-Sentinel
зеркало из
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность
Azure-Sentinel/Sample Data/ArmisAlerts.csv

8.1 KiB
Исходник Ответственный История

1TimeGeneratedEventVendorEventProductActivityUUIDsAlertIdDescriptionDeviceIdsSeverityStatusTimeTitleType
29/7/2022, 7:17:11.023 AMArmisAlertsArmisAlerts[ "Dj1h9IIBAAAAAFMFpHLj", "FD1h9IIBAAAAAFMFpHLj" ]33A medical devices has been detected connecting to a non-medical network which can also include the Guest network segment.[ 599, 600 ]MediumUnhandled8/24/2022, 5:43:27.236 PM[Risk] Medical Device Connected to Non-Medical NetworkSystem Policy Violation
39/7/2022, 7:17:11.023 AMArmisAlertsArmisAlerts[ "Ez1h9IIBAAAAAFMFsfTj" ]179The Armis security platform has detected a violation of a policy and generated an alert.[ 3217 ]MediumUnhandled8/24/2022, 8:31:29.405 PM[Risk] Vulnerable Browser UsageSystem Policy Violation
49/7/2022, 7:17:11.023 AMArmisAlertsArmisAlerts[ "Ej1h9IIBAAAAAFMFpHLj", "ED1h9IIBAAAAAFMFpHLj" ]122The Armis security platform has detected a violation of a policy and generated an alert.[ 2162, 2165 ]MediumUnhandled8/24/2022, 9:01:19.968 PM[Suspicious/OT] PLC Hardware ChangeSystem Policy Violation
59/7/2022, 7:17:11.023 AMArmisAlertsArmisAlerts[ "CD1h9IIBAAAAAFMFsvkp", "dj1h9IIBAAAAAFMFsvcS" ]193The Armis security platform has detected a violation of a policy and generated an alert.[ 3229 ]HighUnhandled8/24/2022, 10:35:58.100 PM[Risk] Credentials Intercepted in Clear TextSystem Policy Violation
69/7/2022, 7:17:11.023 AMArmisAlertsArmisAlerts[ "LD1h9IIBAAAAAFMFpHLk", "Mj1h9IIBAAAAAFMFpHLl", "Lj1h9IIBAAAAAFMFpHLl", "OD1h9IIBAAAAAFMFpHLl", "MT1h9IIBAAAAAFMFpHLl" ]121The Armis security platform has detected a violation of a policy and generated an alert.[ 2162, 2167 ]MediumUnhandled8/24/2022, 11:02:24.361 PM[Suspicious/OT] PLC Hardware ChangeSystem Policy Violation
79/7/2022, 7:17:11.023 AMArmisAlertsArmisAlerts[ "Nz1h9IIBAAAAAFMFpHLl", "Kj1h9IIBAAAAAFMFpHLk", "ND1h9IIBAAAAAFMFpHLl", "IT1h9IIBAAAAAFMFpHLk", "Jz1h9IIBAAAAAFMFpHLk", "KD1h9IIBAAAAAFMFpHLk" ]120The Armis security platform has detected a violation of a policy and generated an alert.[ 2162, 2167 ]MediumUnhandled8/24/2022, 11:02:24.361 PM[Suspicious/OT] PLC Hardware ChangeSystem Policy Violation
89/7/2022, 7:17:11.023 AMArmisAlertsArmisAlerts[ "_T1h9IIBAAAAAFMFpHHh", "_j1h9IIBAAAAAFMFpHHi", "AD1h9IIBAAAAAFMFpHLi", "_z1h9IIBAAAAAFMFpHHi" ]119The Armis security platform has detected a violation of a policy and generated an alert.[ 2163 ]HighUnhandled8/25/2022, 12:19:58.992 AMChatsworth Restricted ICS Devices Connected to the InternetSystem Policy Violation
99/7/2022, 7:17:11.023 AMArmisAlertsArmisAlerts[ "0D1h9IIBAAAAAFMFqoO6" ]141The Armis security platform has detected a violation of a policy and generated an alert.[ 2196 ]HighUnhandled8/25/2022, 2:39:31.825 AM[Risk] Credentials Intercepted in Clear TextSystem Policy Violation
109/7/2022, 7:17:11.023 AMArmisAlertsArmisAlerts[ "qz1h9IIBAAAAAFMFqXSg" ]140The Armis security platform has detected a violation of a policy and generated an alert.[ 2192 ]HighUnhandled8/25/2022, 2:39:35.825 AM[Risk] Credentials Intercepted in Clear TextSystem Policy Violation
119/7/2022, 7:17:11.023 AMArmisAlertsArmisAlerts[ "6T1h9IIBAAAAAFMFqXWz" ]139The Armis security platform has detected a violation of a policy and generated an alert.[ 2182 ]HighUnhandled8/25/2022, 2:39:39.825 AM[Risk] Credentials Intercepted in Clear TextSystem Policy Violation
129/7/2022, 7:17:11.023 AMArmisAlertsArmisAlerts[ "yD1h9IIBAAAAAFMFqoO5" ]138The Armis security platform has detected a violation of a policy and generated an alert.[ 2213 ]HighUnhandled8/25/2022, 2:40:00.825 AM[Risk] Credentials Intercepted in Clear TextSystem Policy Violation
139/7/2022, 7:17:11.039 AMArmisAlertsArmisAlerts[ "uz1h9IIBAAAAAFMFqn1a" ]137The Armis security platform has detected a violation of a policy and generated an alert.[ 2187 ]HighUnhandled8/25/2022, 2:40:28.825 AM[Risk] Credentials Intercepted in Clear TextSystem Policy Violation
149/7/2022, 7:17:11.039 AMArmisAlertsArmisAlerts[ "vTxh9IIBAAAAAFMFj6qG", "vjxh9IIBAAAAAFMFj6qG" ]18The Armis security platform has detected a violation of a policy and generated an alert.[ 963, 962 ]MediumUnhandled8/25/2022, 3:02:07.747 AMNetwork bridge detectedAnomaly Detection
159/7/2022, 7:17:11.039 AMArmisAlertsArmisAlerts[ "Zzxh9IIBAAAAAFMFj6Uq" ]14The Armis security platform has detected a violation of a policy and generated an alert.[ 906 ]HighUnhandled8/25/2022, 3:13:13.391 AM[Risk] Ripple 20 Risk Factors DetectedSystem Policy Violation
169/7/2022, 7:17:11.039 AMArmisAlertsArmisAlerts[ "cD1h9IIBAAAAAFMFnhH0", "cT1h9IIBAAAAAFMFnhH0" ]76The Armis security platform has detected a violation of a policy and generated an alert.[ 1672 ]MediumUnhandled8/25/2022, 3:28:29.974 AMUnencrypted Credentials ActivitiesSystem Policy Violation
179/7/2022, 7:17:11.039 AMArmisAlertsArmisAlerts[ "cz1h9IIBAAAAAFMFnhH0", "cj1h9IIBAAAAAFMFnhH0" ]77The Armis security platform has detected a violation of a policy and generated an alert.[ 1673 ]MediumUnhandled8/25/2022, 3:28:29.974 AMUnencrypted Credentials ActivitiesSystem Policy Violation
189/7/2022, 7:17:11.039 AMArmisAlertsArmisAlerts[ "bz1h9IIBAAAAAFMFnhH0", "bj1h9IIBAAAAAFMFnhH0" ]75The Armis security platform has detected a violation of a policy and generated an alert.[ 1671 ]MediumUnhandled8/25/2022, 3:28:29.974 AMUnencrypted Credentials ActivitiesSystem Policy Violation
199/7/2022, 7:17:11.039 AMArmisAlertsArmisAlerts[ "bD1h9IIBAAAAAFMFnhH0", "bT1h9IIBAAAAAFMFnhH0" ]74The Armis security platform has detected a violation of a policy and generated an alert.[ 1670 ]MediumUnhandled8/25/2022, 3:28:29.974 AMUnencrypted Credentials ActivitiesSystem Policy Violation
209/7/2022, 7:17:11.039 AMArmisAlertsArmisAlerts[ "VTxh9IIBAAAAAFMFj6p_" ]19The Armis security platform has detected a violation of a policy and generated an alert.[ 966, 967 ]MediumUnhandled8/25/2022, 4:30:13.747 AMCorporate device transmitted large amount of unencrypted dataAnomaly Detection
219/7/2022, 7:17:11.039 AMArmisAlertsArmisAlerts[ "sT1h9IIBAAAAAFMFrrc2", "qT1h9IIBAAAAAFMFrrc1", "rD1h9IIBAAAAAFMFrrc1" ]176The Armis security platform has detected a violation of a policy and generated an alert.[ 2868 ]MediumUnhandled8/25/2022, 6:14:11.062 AMSecurity: Unencrypted Credentials over HTTP (Excludes KG Destinations)System Policy Violation
229/7/2022, 7:17:11.039 AMArmisAlertsArmisAlerts[ "0j1h9IIBAAAAAFMFsfTs", "7z1h9IIBAAAAAFMFsfX9", "Kj1h9IIBAAAAAFMFsfXx", "FT1h9IIBAAAAAFMFsfb_", "bz1h9IIBAAAAAFMFsfX2" ]186The Armis security platform has detected a violation of a policy and generated an alert.[ 3226 ]HighUnhandled8/25/2022, 8:09:52.366 AM[Risk] Credentials Intercepted in Clear TextSystem Policy Violation
239/7/2022, 7:17:11.039 AMArmisAlertsArmisAlerts[ "MT1h9IIBAAAAAFMFpHHS", "Lz1h9IIBAAAAAFMFpHHS" ]114The Armis security platform has detected a violation of a policy and generated an alert.[ 2156, 2152 ]MediumUnhandled8/25/2022, 8:27:36.528 AM[MITRE ATT&CK | ICS] T0886 | Initial Access, Lateral Movement | Remote Services System Policy Violation
249/7/2022, 7:17:11.039 AMArmisAlertsArmisAlerts[ "MD1h9IIBAAAAAFMFpHHS", "Lj1h9IIBAAAAAFMFpHHS" ]113The Armis security platform has detected a violation of a policy and generated an alert.[ 2156, 2152 ]MediumUnhandled8/25/2022, 8:27:36.629 AM[MITRE ATT&CK | ICS] T0886 | Initial Access, Lateral Movement | Remote Services System Policy Violation
259/7/2022, 7:17:11.039 AMArmisAlertsArmisAlerts[ "fDxh9IIBAAAAAFMFkLyC" ]22The Armis security platform has detected a violation of a policy and generated an alert.[ 1049 ]HighUnhandled8/25/2022, 10:22:15.129 AM[Risk] Credentials Intercepted in Clear TextSystem Policy Violation