LogoLogo
Anvilogic WebsiteProduct Documentation
  • Welcome to Anvilogic
  • What's New
    • What's new?
      • 6.x releases
      • 5.x releases
  • Get Started
    • Onboarding guide
      • Log in and set your password
      • Define your company's threat profile
      • Select your data repository and get data in
        • Integrate Splunk as your data repository
          • Download and install the Anvilogic App for Splunk
            • Splunk Cloud Platform
              • Verify requirements
              • Install the Anvilogic App for Splunk
            • Splunk Enterprise
              • Verify requirements
              • Download the Anvilogic App for Splunk
              • Install the Anvilogic App for Splunk
          • Create the Anvilogic indexes
          • Assign the avl_admin role
          • Configure the HEC collector commands
          • Connect to the Anvilogic platform
        • Integrate Snowflake as your data repository
          • Get data into Snowflake
      • Review data feeds
      • (Optional) Upload your existing detections
      • Review and deploy recommended content
      • Additional tasks
    • Reference Architectures
      • Anvilogic on Splunk Architecture
      • Anvilogic on Azure
      • Anvilogic on Snowflake Architecture
        • FluentBit
          • Linux data
          • Syslog data
          • Windows data
        • Fluentd
      • Anvilogic on Databricks Architecture
      • Hybrid - Anvilogic on Splunk & Snowflake Architecture
  • Security Controls
    • AI security controls
    • Monte Copilot & AI privacy and controls
Powered by GitBook
On this page
  • Where can I view recommended content?
  • Deploy recommended content
  • Next steps

Was this helpful?

Export as PDF
  1. Get Started
  2. Onboarding guide

Review and deploy recommended content

Review and deploy a variety of detections on the Anvilogic platform.

Last updated 8 days ago

Was this helpful?

The Anvilogic platform generates recommended content for you to deploy based on your threat priorities and good quality data feeds.

Where can I view recommended content?

You can view recommended content on the Home page and in the Armory, which shows you all available detections not yet deployed in your system.

Deploy recommended content

The table defines additional types of recommended content on the Anvilogic platform and how you can deploy them.

Content
Description

Threat identifiers

Recommended threat identifiers can be viewed on the Home page and in the Armory. See for an example of how to deploy a recommended threat identifier from the Home page.

Trending topics

Trending topics are in-product versions of the Forge Threat Detection Report emails sent to existing customers. Trending topics can be found on the Home page and the Armory. See for an example of how to deploy all the content in a trending topic.

Detection packs

Detection packs are collections of threat identifiers, threat scenarios, and macros that address a specific security issue. Detection packs can be viewed in the Armory. See for an example of how to deploy all the content in a detection pack.

Next steps

Perform Additional tasks to set up user access and authentication.

Deploy a recommended Snowflake threat identifier
Deploy a trending topic
Deploy a detection pack