How to Modify Alert Severities and Parameters - Correlation Rules Reference

Created by Juan Manuel Libera Frómeta, Modified on Fri, 29 Sep 2023 at 09:48 AM by Juan Manuel Libera Frómeta

This comprehensive guide provides a detailed reference for configuring correlation rules in UTMStack, focusing on essential parameters that impact alert generation. Exploring fields like severity, description, solution, and more, users can tailor their alerting systems to align with their unique security requirements. Additionally, the article offers insights into utilizing cache and search functionalities efficiently, alongside practical examples for detecting Windows authentication failures.

For the complete guide and examples, visit the UTMStack Correlation Rules Documentation on GitHub

Was this article helpful?

That’s Great!

Thank you for your feedback

Sorry! We couldn't be helpful

Thank you for your feedback

Let us know how can we improve this article!

Select atleast one of the reasons

Feedback sent

We appreciate your effort and will try to fix the article