Create an Analytics Rule

Get Started with Threat Detection Management
Analytics Rules
Correlation Rules
Threat Scoring
- Tune Threat Scoring

Create analytics rules to address specific security threats unique to your environment.

There are two ways to create an analytics rule: using a point-and-click interface directly in Threat Detection Management; or by defining the analytics rule configuration in a JSON file, then importing the JSON file into Threat Detection Management.

You can create an unlimited number of analytics rules, but there is a limit to the number of custom analytics rules you're allowed to enable.

Create Analytics Rules Using a Builder
Create an analytics rule using a point-and-click builder directly in Threat Detection Management.
Create an Analytics Rule using JSON
Create analytics rules by defining the analytics rule configuration in a JSON file, then importing the JSON file into Threat Detection Management.

Threat Detection ManagementThreat Detection Management Guide

Table of ContentsTable of Contents

Create an Analytics Rule