Difference between revisions of "Datadog SIEM Content Packs for Google Workspace"
Jump to navigation
Jump to search
| Line 1: | Line 1: | ||
| − | * https://docs.datadoghq.com/security/default_rules/#gsuite | + | * https://docs.datadoghq.com/security/default_rules/#gsuite __NOTOC__ |
=== High === | === High === | ||
* <code>Google Workspace Alert Center</code> | * <code>Google Workspace Alert Center</code> | ||
Latest revision as of 11:27, 12 October 2024
High[edit]
Google Workspace Alert CenterGoogle Workspace Tor client detectedGoogle Workspace user assigned supe administrative roleGoogle Workspace user edited account recovery information
Medium[edit]
Domain added to Google Workspace allowlisted domainsGoogle Workspace accessed by GoogleGoogle Workspace administrator has disabled 2-step verification for organizational unit
Low[edit]
Google Workspace admin role createdGoogle Workspace administrator initiated a data transfer requestGoogle Workspace user assigned administrative roleGoogle Workspace user disabled 2-step verificationGoogle Workspace user forwarding email out of non Google Workspace domainGoogle Workspace user has unenrolled from Advanced ProtectionLarge amount of downloads on Google DriveUser attempted login with leaked password
See also[edit]
Advertising:
