• Support
  • Forums
  • Blogs
A New Community Experience is Coming! For more information, please see our announcement.

how can i see user contributed directives in alarms


New Life Form
i clone some av-free feed directives. In siem search i see that this directives working . But i don't usually see this directives events in alarms

Share post:


  • Risk = (priority *reliability * asset_value)/25. Any event with a risk score greater than 1 will generate an alarm.

    You can increase priority or reliability within your directive.

    Good luck
Sign In or Register to comment.