Recorded Future Classic Alert

This rule is part of a beta feature. To learn more, contact Support.
recorded-future

Classification:

attack

이 페이지는 아직 한국어로 제공되지 않습니다. 번역 작업 중입니다.
현재 번역 프로젝트에 대한 질문이나 피드백이 있으신 경우 언제든지 연락주시기 바랍니다.

Goal

Surface Recorded Future Classic Alerts as Datadog security signals for centralized triage and response.

Strategy

This rule ingests Recorded Future Classic Alert events (source: recorded-future, service: classic-alerts) and converts them directly into security signals.

Triage & Response

  1. Review the signal details including the Recorded Future rule name {{@rule.name}} that triggered the alert.
  2. If needed, open the corresponding alert in the Recorded Future portal for further context.
  3. Investigate the alert for potential impact to your enterprise.
  4. If the alert is relevant to your organization, initiate the appropriate response workflow (domain takedown, patch management, threat hunting, network blocking, etc.).