DET0866 Detection of Search Threat Vendor Data
| Item | Value |
|---|---|
| ID | DET0866 |
| Version | 1.0 |
| Created | 21 October 2025 |
| Last Modified | 21 October 2025 |
Technique Detected: T1681 (Search Threat Vendor Data)
Analytics
PRE
AN1998
Much of this activity may have a very high occurrence and associated false positive rate, as well as potentially taking place outside the visibility of the target organization, making detection difficult for defenders.
Log Sources
| Data Component | Name | Channel |
|---|---|---|
Mutable Elements
| Field | Description |
|---|---|