Alert to connectors


I am sending elastic security alerts to microsoft teams.

I am using suricata for IDS and the alerts are sending fine, however, it always show External Alerts as the name. It does not provide the real alert name.

Instead of showing "A network trojan has been detected" it's showing External Alert.

Any way to show more details on alerts generated by suricata or any other external plugin on a connector?

Thank you

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.