[New Rule] Attempt to Modify or Delete Okta Application

## Description


An adversary may attempt to modify, deactivate, or delete an Okta application in order to weaken an organization's security controls or disrupt its business operations.

## Required Info

- **Eventing Sources:**

`filebeat-*`

- **Target Operating Systems:**


- **Platforms**

Okta

- **Target ECS Version:** `1.5.0`
- **New fields required in ECS for this? No Associated issue/PR:** N/A

## Optional Info
- **References:**
  - https://developer.okta.com/docs/reference/api/system-log/
  - https://developer.okta.com/docs/reference/api/event-types/

## Example Data


<img width="2551" alt="image" src="https://user-images.githubusercontent.com/56409778/86296769-d928e780-bbb6-11ea-85ee-c1427c1663cc.png">

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

[New Rule] Attempt to Modify or Delete Okta Application #9

Description

Required Info

Optional Info

Example Data

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

[New Rule] Attempt to Modify or Delete Okta Application #9

Description

Description

Required Info

Optional Info

Example Data

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions