File
Lacework generates file-based alerts when there are file-related vulnerabilities detected. You can define alert rules to trigger alerts when file-related vulnerabilities are found. See Alert Rules.
Alert List
The following table lists all the file-based alerts.
Alert Name | Alert Type | Event Model | Alert Subcategory |
---|---|---|---|
Malicious file | MaliciousFile | threataggr | File |
Suppress an Alert
Suppressing specific file-related alerts reduces the number of alerts and allows you to focus on the assets that are most important to you. For details, see Suppress Behavior Anomaly Alerts.