From dc98994f0f6faa8afa4424e55959a051ce377907 Mon Sep 17 00:00:00 2001 From: v-rusraut Date: Mon, 11 Sep 2023 11:45:37 +0530 Subject: [PATCH] updated version in Analytic Rules --- .../Analytic Rules/Infoblox-DataExfiltrationAttack.yaml | 2 +- .../Infoblox-HighThreatLevelQueryNotBlockedDetected.yaml | 2 +- ...foblox-ManyHighThreatLevelQueriesFromSingleHostDetected.yaml | 2 +- .../Infoblox-ManyHighThreatLevelSingleQueryDetected.yaml | 2 +- .../Infoblox-ManyNXDOMAINDNSResponsesDetected.yaml | 2 +- .../Infoblox-TI-CommonSecurityLogMatchFound-MalwareC2.yaml | 2 +- .../Infoblox-TI-InfobloxCDCMatchFound-LookalikeDomains.yaml | 2 +- .../Analytic Rules/Infoblox-TI-SyslogMatchFound-URL.yaml | 2 +- 8 files changed, 8 insertions(+), 8 deletions(-) diff --git a/Solutions/Infoblox Cloud Data Connector/Analytic Rules/Infoblox-DataExfiltrationAttack.yaml b/Solutions/Infoblox Cloud Data Connector/Analytic Rules/Infoblox-DataExfiltrationAttack.yaml index f1b45f32528..03ed7331e3d 100644 --- a/Solutions/Infoblox Cloud Data Connector/Analytic Rules/Infoblox-DataExfiltrationAttack.yaml +++ b/Solutions/Infoblox Cloud Data Connector/Analytic Rules/Infoblox-DataExfiltrationAttack.yaml @@ -65,5 +65,5 @@ incidentConfiguration: reopenClosedIncident: true lookbackDuration: 7d matchingMethod: AllEntities -version: 1.0.0 +version: 1.0.1 kind: Scheduled diff --git a/Solutions/Infoblox Cloud Data Connector/Analytic Rules/Infoblox-HighThreatLevelQueryNotBlockedDetected.yaml b/Solutions/Infoblox Cloud Data Connector/Analytic Rules/Infoblox-HighThreatLevelQueryNotBlockedDetected.yaml index d7045a62e5a..9028c1f6cdd 100644 --- a/Solutions/Infoblox Cloud Data Connector/Analytic Rules/Infoblox-HighThreatLevelQueryNotBlockedDetected.yaml +++ b/Solutions/Infoblox Cloud Data Connector/Analytic Rules/Infoblox-HighThreatLevelQueryNotBlockedDetected.yaml @@ -66,5 +66,5 @@ eventGroupingSettings: aggregationKind: SingleAlert incidentConfiguration: createIncident: true -version: 1.0.1 +version: 1.0.2 kind: Scheduled diff --git a/Solutions/Infoblox Cloud Data Connector/Analytic Rules/Infoblox-ManyHighThreatLevelQueriesFromSingleHostDetected.yaml b/Solutions/Infoblox Cloud Data Connector/Analytic Rules/Infoblox-ManyHighThreatLevelQueriesFromSingleHostDetected.yaml index c7255107e88..1b957bb8766 100644 --- a/Solutions/Infoblox Cloud Data Connector/Analytic Rules/Infoblox-ManyHighThreatLevelQueriesFromSingleHostDetected.yaml +++ b/Solutions/Infoblox Cloud Data Connector/Analytic Rules/Infoblox-ManyHighThreatLevelQueriesFromSingleHostDetected.yaml @@ -50,5 +50,5 @@ eventGroupingSettings: aggregationKind: SingleAlert incidentConfiguration: createIncident: true -version: 1.0.0 +version: 1.0.1 kind: Scheduled diff --git a/Solutions/Infoblox Cloud Data Connector/Analytic Rules/Infoblox-ManyHighThreatLevelSingleQueryDetected.yaml b/Solutions/Infoblox Cloud Data Connector/Analytic Rules/Infoblox-ManyHighThreatLevelSingleQueryDetected.yaml index 947b1257661..e8bd08b440e 100644 --- a/Solutions/Infoblox Cloud Data Connector/Analytic Rules/Infoblox-ManyHighThreatLevelSingleQueryDetected.yaml +++ b/Solutions/Infoblox Cloud Data Connector/Analytic Rules/Infoblox-ManyHighThreatLevelSingleQueryDetected.yaml @@ -50,5 +50,5 @@ eventGroupingSettings: aggregationKind: SingleAlert incidentConfiguration: createIncident: true -version: 1.0.1 +version: 1.0.2 kind: Scheduled diff --git a/Solutions/Infoblox Cloud Data Connector/Analytic Rules/Infoblox-ManyNXDOMAINDNSResponsesDetected.yaml b/Solutions/Infoblox Cloud Data Connector/Analytic Rules/Infoblox-ManyNXDOMAINDNSResponsesDetected.yaml index 7d7955817ef..54834a05845 100644 --- a/Solutions/Infoblox Cloud Data Connector/Analytic Rules/Infoblox-ManyNXDOMAINDNSResponsesDetected.yaml +++ b/Solutions/Infoblox Cloud Data Connector/Analytic Rules/Infoblox-ManyNXDOMAINDNSResponsesDetected.yaml @@ -50,5 +50,5 @@ eventGroupingSettings: aggregationKind: SingleAlert incidentConfiguration: createIncident: true -version: 1.0.0 +version: 1.0.1 kind: Scheduled diff --git a/Solutions/Infoblox Cloud Data Connector/Analytic Rules/Infoblox-TI-CommonSecurityLogMatchFound-MalwareC2.yaml b/Solutions/Infoblox Cloud Data Connector/Analytic Rules/Infoblox-TI-CommonSecurityLogMatchFound-MalwareC2.yaml index b4e0738f33f..42130181fd6 100644 --- a/Solutions/Infoblox Cloud Data Connector/Analytic Rules/Infoblox-TI-CommonSecurityLogMatchFound-MalwareC2.yaml +++ b/Solutions/Infoblox Cloud Data Connector/Analytic Rules/Infoblox-TI-CommonSecurityLogMatchFound-MalwareC2.yaml @@ -66,5 +66,5 @@ eventGroupingSettings: aggregationKind: SingleAlert incidentConfiguration: createIncident: true -version: 1.0.0 +version: 1.0.1 kind: Scheduled diff --git a/Solutions/Infoblox Cloud Data Connector/Analytic Rules/Infoblox-TI-InfobloxCDCMatchFound-LookalikeDomains.yaml b/Solutions/Infoblox Cloud Data Connector/Analytic Rules/Infoblox-TI-InfobloxCDCMatchFound-LookalikeDomains.yaml index 243377fbd9c..cb2eb30322a 100644 --- a/Solutions/Infoblox Cloud Data Connector/Analytic Rules/Infoblox-TI-InfobloxCDCMatchFound-LookalikeDomains.yaml +++ b/Solutions/Infoblox Cloud Data Connector/Analytic Rules/Infoblox-TI-InfobloxCDCMatchFound-LookalikeDomains.yaml @@ -78,5 +78,5 @@ eventGroupingSettings: aggregationKind: SingleAlert incidentConfiguration: createIncident: true -version: 1.0.1 +version: 1.0.2 kind: Scheduled diff --git a/Solutions/Infoblox Cloud Data Connector/Analytic Rules/Infoblox-TI-SyslogMatchFound-URL.yaml b/Solutions/Infoblox Cloud Data Connector/Analytic Rules/Infoblox-TI-SyslogMatchFound-URL.yaml index d80f3b4b242..bd21da541f9 100644 --- a/Solutions/Infoblox Cloud Data Connector/Analytic Rules/Infoblox-TI-SyslogMatchFound-URL.yaml +++ b/Solutions/Infoblox Cloud Data Connector/Analytic Rules/Infoblox-TI-SyslogMatchFound-URL.yaml @@ -65,5 +65,5 @@ eventGroupingSettings: aggregationKind: SingleAlert incidentConfiguration: createIncident: true -version: 1.0.0 +version: 1.0.1 kind: Scheduled