Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊
| Attribute | Value |
|---|---|
| Title | Union Parser for all CrowdStrike Falcon Data Replicator events |
| Location | Solution |
| Solution | CrowdStrike Falcon Endpoint Protection |
| Version | 1.0.0 |
| Last Updated | Jun 21st 2023 |
| Category | CrowdStrikeParser |
| File Type | .yaml |
| Source | View on GitHub |
This parser reads from the following tables:
| Table | Selection Criteria | Transformations | Ingestion API | Lake-Only |
|---|---|---|---|---|
ASimAuditEventLogs |
✓ | ✓ | ? | |
ASimAuthenticationEventLogs |
✓ | ✓ | ? | |
ASimAuthenticationEventLogs_CL |
? | ✓ | ? | |
ASimDnsActivityLogs |
✓ | ✓ | ? | |
ASimFileEventLogs |
EventProduct == "Falcon Data Replicator"EventVendor == "CrowdStrike" |
✓ | ✓ | ? |
ASimFileEventLogs_CL |
? | ✓ | ? | |
ASimNetworkSessionLogs |
✓ | ✓ | ? | |
ASimProcessEventLogs |
✓ | ✓ | ? | |
ASimProcessEventLogs_CL |
? | ✓ | ? | |
ASimRegistryEventLogs |
✓ | ✓ | ? | |
ASimRegistryEventLogs_CL |
? | ✓ | ? | |
ASimUserManagementActivityLogs |
✓ | ✓ | ? | |
ASimUserManagementLogs_CL |
? | ✓ | ? | |
CrowdStrike_Additional_Events_CL |
? | ✓ | ? | |
CrowdStrike_Secondary_Data_CL |
? | ✓ | ? |
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊