Analytics Story: Confluence Data Center and Confluence Server Vulnerabilities
Description
The following analytic story covers use cases for detecting and investigating potential attacks against Confluence Data Center and Confluence Server.
Why it matters
The analytic story of Confluence Data Center and Confluence Server encompasses a comprehensive approach to safeguarding these platforms from a variety of threats. By leveraging the analytics created in the project, security teams are equipped to detect, investigate, and respond to potential attacks that target Confluence environments.
Detections
Data Sources
Name | Platform | Sourcetype | Source |
---|---|---|---|
Nginx Access | N/A | nginx:plus:kv |
/var/log/nginx/access.log |
Palo Alto Network Threat | Network | pan:threat |
pan:threat |
Suricata | N/A | suricata |
suricata |
References
Source: GitHub | Version: 1