Firepower Vulnerability Signatures
Classification
| Rule Name | Rule Type | Common Event | Classification |
|---|---|---|---|
| FirePower Vulnerability Signatures | Base Rule | General IPS/IDS Log Message | Activity |
| * |
Mapping with LogRhythm Schema
Device Key in Log Message | LogRhythm Schema | Data Type |
|---|---|---|
| N/A | <vmid> | Text/String |
| Priority | <severity> | Text/String |
| SrcIP | <sip> | Number |
| DstIP | <dip> | Number |
| SrcPort | <sport> | Number |
| DstPort | <dport> | Number |
| ingressinterface | <sinterface> | Number |
| egressinterface | <dinterface> | Number |
| Protocol | <protname> | Text/String |
| User | <login> | Text/String |
| classification | <object> | Text/String |
| message | <objectname> | Text/String |
| ApplicationProtocol | <subject> | Number |
| message | <threatname> | Text/String |
| Client | <version> | Number/Text |
| GID | <group> | Text/String |
| inlineresult | <result> | Number |
| GID | <tag1> | Text/String |
| * There are 52791 sub rules associated with this rule. Adding them on this page is not feasible. We are looking for alternatives for this. |