Logpresso Store

ml-beacon-sessions

# ml-beacon-sessions

ml-beaconing-connections

Detect beaconing connections by analyzing session patterns.

ml-scan-http-request

Detect web application attack. You must input a raw_data field that contains both HTTP headers and body.

ml-scan-web-log

Detect anomaly web access. src_ip, status, method, path, query, user_agent fields are required.

ML Rules