This guide is for LogRhythm administrators who are responsible for the security of their organization’s infrastructure and for anyone installing and configuring the SIEM.

Module Contents

This module adds to an existing LogRhythm deployment, as follows:

  • 42 AI Engine Rules (15 Progression Rules)
  • 8 Lists
  • 2 Reports


The deployment of this module assumes the following:

  • The overall LogRhythm deployment is in a fully-deployed and healthy state.
  • LogRhythm version 7.1 or later is installed.

Overview of Steps

This guide is divided into the following sections:

Core Threat Detection Deployment Guide—Upgrade Considerations
Core Threat Detection Deployment Guide—Import and Synchronize the Module
Core Threat Detection Deployment Guide—Configure the Module