- 重要な情報
- アプリ内
- インフラストラクチャー
- アプリケーションパフォーマンス
- 継続的インテグレーション
- ログ管理
- セキュリティ
- UX モニタリング
- 管理
Detect when a host is potentially infected with a cryptominer.
This rule compares the @network.client.ip
standard attribute to a curated list of cryptomining pools.
{{host}}
host should be contacting a cryptomining pool.Note You can use the signal sidepanel to assist with the initial investigation by looking at CPU utilization and processes to identify unauthorized activity.
restrictedToOrgs
settings, launching rule to all of production.