Proofpoint Targeted Attack Protection (TAP) helps detect, mitigate, and block advanced threats that target people through email. TAP detects both known and new attacks that use malicious attachments and URLs to install malware on a device or trick users to share their passwords or other sensitive information.
Architecture
Proofpoint SIEM API can be leveraged to pull events from TAP. Both URL Defense and Attachment Defense logs are covered by this API. Relevant documentation available here.
Integration release checklist
This checklist is intended for integrations maintainers to ensure consistency
when creating or updating a Package, Module or Dataset for an Integration.
Description
Proofpoint Targeted Attack Protection (TAP) helps detect, mitigate, and block advanced threats that target people through email. TAP detects both known and new attacks that use malicious attachments and URLs to install malware on a device or trick users to share their passwords or other sensitive information.
Architecture
Proofpoint SIEM API can be leveraged to pull events from TAP. Both URL Defense and Attachment Defense logs are covered by this API. Relevant documentation available here.
Integration release checklist
This checklist is intended for integrations maintainers to ensure consistency when creating or updating a Package, Module or Dataset for an Integration.
All changes
New Package
Dashboards changes
Log dataset changes
sample_event.json
) exists