Network Change Detected

Description

Detects changes to policies of the network protection devices (such as firewall policy changes).

Content Mapping

This content is not mapped to any local saved search. Add mapping


Use Case

Security Monitoring

Category

Operations

Alert Volume

Detects changes to policies of the network protection devices (such as firewall policy changes).

SPL Difficulty

Medium

Journey

Stage 4

MITRE ATT&CK Tactics

Defense Evasion

MITRE ATT&CK Techniques

Disabling Security Tools

Disable or Modify Tools

MITRE Threat Groups

BRONZE BUTLER
FIN6
Gamaredon Group
Gorgon Group
Kimsuky
Lazarus Group
Night Dragon
Putter Panda
Rocke
Turla
Wizard Spider

Data Sources

Configuration Management