Difference between revisions of "Datadog SIEM Content Packs for 1Password"
Jump to navigation
Jump to search
| (3 intermediate revisions by the same user not shown) | |||
| Line 3: | Line 3: | ||
| + | Rules: | ||
| + | * <code>[[1Password vault export attempt by user]]</code> | ||
| + | * <code>[[Unusual 1Password item usage action observed from user]]</code> | ||
| + | * <code>[[Impossible travel event observed from 1Password user]]</code> | ||
| + | * <code>[[Anomalous amount of failed sign-in attempts by 1Password user]]</code> | ||
| + | * <code>[[Unusual 1Password device authorization activity]]</code> | ||
| + | * <code>[[Attempt to modify a 1Password item by user]]</code> | ||
| − | + | == Related == | |
| − | + | * [[1Password Datadog integration]] | |
| − | |||
| − | |||
| − | |||
| − | * [[ | ||
== See also == | == See also == | ||
* {{DD SIEM}} | * {{DD SIEM}} | ||
| + | * {{1p}} | ||
[[Category:Datadog]] | [[Category:Datadog]] | ||
Latest revision as of 16:24, 26 August 2024
Rules:
1Password vault export attempt by userUnusual 1Password item usage action observed from userImpossible travel event observed from 1Password userAnomalous amount of failed sign-in attempts by 1Password userUnusual 1Password device authorization activityAttempt to modify a 1Password item by user
Related[edit]
See also[edit]
Advertising:
