I would like to create a rule to detect emails coming from specific domain for Strat malware email delivery. Please guide me how to do that:
You will be best off using create value lists and create a detection rule using the list. (please read in that order)
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.