- Get Started with Threat Detection Management
- Analytics Rules
- Analytics Rule Classifications
- Create an Analytics Rule
- Manage Analytics Rules
- Tune Analytics Rules
- Find Analytics Rules
- Share Analytics Rules
- Troubleshoot Analytics Rules
- Analytics Rules Syntax
- Advanced Analytics Rule Syntax vs. Analytics Rule Syntax
- Logical Expressions in Analytics Rule Syntax'
- String Operations Using Analytics Rule Syntax
- Integer Operations Using Analytics Rule Syntax
- Time Operations Using Analytics Rule Syntax
- Network Operations Using Analytics Rule Syntax
- Context Operations Using Analytics Rule Syntax
- Entity Operations Using Analytics Rule Syntax
- Correlation Rule Operations Using Analytics Rule Syntax
- Analytics Engine Status
- Correlation Rules
- Correlation Rule Sequences
- Correlation Rules Templates
- Create Correlation Rules
- Create a Correlation Rule Using the Exabeam Nova Rule Creator
- Create a Correlation Rule from Scratch Using the Manual Rule Creator
- Create a Correlation Rule from a Template
- Create a Correlation Rule from Search
- Group by Field in Correlation Rules
- Detect Absent Events or Fields Using Correlation Rules
- Granular Suppression
- Correlation Rule Evaluation Delay
- Manage Correlation Rules
- Find Correlation Rules
- Share Correlation Rules
- View Correlation Rules Metrics
- Threat Scoring
Create an Analytics Rule
Create analytics rules to address specific security threats unique to your environment.
There are three ways to create an analytics rule:
Prompting Exabeam Nova Rule Creator with natural language descriptions of the rule you want to create
Manually configuring the analytics rule using a point-and-click builder
Defining the analytics rule configuration in a JSON file, then importing the JSON file into Threat Detection Management
You can create an unlimited number of analytics rules, but there is a limit to the number of custom analytics rules you're allowed to enable.
Create an Analytics Rule Using Exabeam Nova Rule Creator
Create an analytics rule by prompting Exabeam Nova with natural language descriptions of the analytics rule you want to create.
Create Analytics Rules Using the Manual Rule Creator
Create an analytics rule using a point-and-click builder.
Create an Analytics Rule using JSON
Create analytics rules by defining the analytics rule configuration in a JSON file, then importing the JSON file into Threat Detection Management.