Use CasesGet Started with Threat Detection, Investigation, and Response (TDIR) Use Case Packages

External Threats Use Case Package

The External Threats use case package categorizes all uses cases related to external threats.

The External Threats use case package is a top-level classification that groups all use cases in which an adversary deceives users, accesses valid credentials, or exploits corporate assets.

External Threats use cases include:

  • Malware

  • Phishing DOCUMENTATION COMING SOON

  • Ransomware DOCUMENTATION COMING SOON

  • Brute Force Attack DOCUMENTATION COMING SOON

  • Cryptomining DOCUMENTATION COMING SOON

Malware Use Case

Learn about the Malware use case and what Exabeam functionalities are aligned to solve it.

The Malware use case describes when an attacker develops malicious programs or code to access your system without authorization or damage your data or system.

In the Threat Detection, Investigation, and Response (TDIR) Use Case Package hierarchy, the Malware use case falls under the External Threats use case package. It doesn't contain any scenarios.

In Case Manager, use the out-of-the-box Malware incident type to standardize incident fields, phases, and tasks for malware incidents.Malware Incident TypeIncident FieldsExabeam PhasesExabeam Tasks

In Incident Responder , use the Malware turnkey playbook to analyze suspicious files and detonate potential malware.Malware Turnkey Playbook

View more information about what malware is and how it happens on the Exabeam Community.