Products: CheckPoint - SmartDefense
Rule ID | Rule Name |
---|---|
MATCH-S00553 | Allowed Inbound RDP Traffic |
MATCH-S00209 | CVE-2021-44228 Log4j2 Java Library 0-Day Attempt |
THRESHOLD-S00074 | Excessive Firewall Denies |
THRESHOLD-S00085 | Excessive Outbound Firewall Blocks |
FIRST-S00030 | First Seen Outbound Connection to External IP Address on Port 445 from IP Address |
LEGACY-S00047 | High risk file extension download without hostname and referrer |
THRESHOLD-S00079 | Inbound Port Scan |
MATCH-S00669 | Informational Severity Intrusion Signature |
THRESHOLD-S00080 | Internal Port Scan |
THRESHOLD-S00081 | Internal Port Sweep |
THRESHOLD-S00514 | Intrusion Scan - Targeted |
THRESHOLD-S00515 | Intrusion Sweep |
MATCH-S00396 | Large Outbound ICMP Packets |
MATCH-S00667 | Medium Severity Intrusion Signature |
MATCH-S00554 | Outbound IRC Traffic |
MATCH-S00558 | Potential Inbound VNC Traffic |
MATCH-S00783 | Spring4Shell Exploitation - URL |
MATCH-S00555 | Threat Intel - Inbound Traffic Context |
LEGACY-S00107 | Threat Intel Match - IP Address |
Log Mapper ID | Log Mapper Name |
---|---|
742292bf-9864-49e8-91a5-48aaa056219c | Check Point SmartDefense |