Sender Group Reputation
Vendor Documentation
Classification
| Rule Name | Rule Type | Classification | Common Event |
|---|---|---|---|
| Sender Group Reputation | Base Rule | Ops/Information | General Email Sender Message |
Mapping with LogRhythm Schema
| Device Key in Log Message | LogRhythm Schema | Data Type | Schema Description |
| <dip> | IP Address | ||
| <dname> | Text\String | ||
| <dport> | Text\String | ||
<process> <action> | Text\String | ||
| ICID | <processid> | Number | |
<object> <amount> | Number Text\String | ||
| <group> | Text\String |