Threat Detector is a new Oracle Cloud Guard detector recipe that continuously monitors OCI audit events looking for malicious activity. It uses a data platform capable of running machine learning (ML)-based behavioral attack models over long periods of time. It maintains user profiles that consolidate attack sightings and tracks risk scores based on attack progression to create problems only when the risk score reaches critical levels.

Threat Detector allows customers to monitor their environments for indications of insider threats and compromised accounts - succinctly, and effectively.

For more information, see Monitoring Threats and Threat Detector Rules.