Detection rules define conditional logic that is applied to all ingested logs. When at least one case defined in a detection rule is matched over a given period of time, Datadog generates a security signal.
Datadog provides default detection rules to flag attacker techniques and potential misconfigurations so that you immediately improve your security posture. Datadog continuously develops new default detection rules, which are automatically imported into your account.
Filter by Logs Detection to see the Security monitoring rules, and filter by Runtime Agent and Cloud Configuration to see the beta Compliance monitoring rules. To request access to the beta, use this link.