Skip to content

Latest commit

 

History

History
15 lines (13 loc) · 1.16 KB

r_m_kasada_kasada_Ransomware.md

File metadata and controls

15 lines (13 loc) · 1.16 KB

Rules by Product and UseCase

Vendor: Kasada

Product: Kasada

Use-Case: Ransomware

Rules Models MITRE ATT&CK® TTPs Activity Types Parsers
1 0 2 2 1
Event Type Rules Models
web-activity-allowed T1071 - Application Layer Protocol
WEB-UI-Ransomware: User attempted to connect to IP address which is associated to Ransomware

T1071.001 - Application Layer Protocol: Web Protocols
WEB-UI-Ransomware: User attempted to connect to IP address which is associated to Ransomware
web-activity-denied T1071 - Application Layer Protocol
WEB-UI-Ransomware: User attempted to connect to IP address which is associated to Ransomware

T1071.001 - Application Layer Protocol: Web Protocols
WEB-UI-Ransomware: User attempted to connect to IP address which is associated to Ransomware