Create 100651-abuseipdb.xml

This commit is contained in:
SOCFortress
2022-08-20 09:04:24 -05:00
committed by GitHub
parent 30926f58c4
commit d1f17e08a5

View File

@@ -0,0 +1,7 @@
<group name="threat_intel,">
<rule id="100651" level="12">
<field name="abuseipdb.abuse_confidence_score" type="pcre2" negate="yes">^0$</field>
<description>IP with $(abuseipdb.abuse_confidence_score)% confidence of abuse was connected to.</description>
<group>abuseipdb,abuseipdb_alert,</group>
</rule>
</group>