{tbl.open,width:100%,align:center,heading:Signature to Risk Filter Editor}
Information
The Sig Risk Filter is used to dynamically assign risk levels to events based on signature id's and/or signature names.

Performing signature to risk conversions at this level helps preserve system resources by updating risk levels prior to import and processing functions.

Syntax
* One entry per line
* Comma delimeted
* Signature ID or Signature Name
* Case sensitive matching
* Entries are matched against the signature ID and name

Syntax Example
{id or signature name},{new risk level}

Optional Information
This file may be manually edited and is located in your /conf/ directory as sigrisk.txt

 

{buttonDisplay1("Save Changes")}

{tbl.close}