cancel
Showing results for 
Search instead for 
Did you mean: 
Highlighted

SIEM:Use case to detect more than one hundred emails sent in a certain time

HI, 

Does anyone create (maybe similar) a use case to detect more than one hundred emails sent in a certain time from a specific address??

I have data sources: Barracuda, Exchange and AD.

I appreciate your comments.

Thanks.

 

 

Labels (1)
More McAfee Tools to Help You
  • Subscription Service Notification (SNS)
  • How-to: Endpoint Removal Tool
  • Support: Endpoint Security
  • eSupport: Policy Orchestrator