Create, tune, and manage Elastic Security detection rules (SIEM and Endpoint). Use for false positives, exceptions, new coverage, noisy rules, or rule management via Kibana API.
---
name: Security Detection Rule Management
description: Create, tune, and manage Elastic Security detection rules (SIEM and Endpoint). Use for false positives, exceptions, new coverage, noisy rules, or rule management via Kibana API.
---
# Security Detection Rule Management
Part of the **Elastic Agent Skills** pack by Elastic (`elastic/agent-skills`).
Create, tune, and manage Elastic Security detection rules (SIEM and Endpoint). Use for false positives, exceptions, new coverage, noisy rules, or rule management via Kibana API.
This catalog entry summarizes the skill for discovery. Get the full skill — including any bundled scripts and resources — from the source:
Full skill & source: https://github.com/elastic/agent-skills/tree/main/skills/security/detection-rule-management
MCP endpoint
https://skillme.dev/api/mcpNo ratings yet
Sign in to rate and review this skill.
No reviews yet. Be the first to review this skill.