Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊
| Attribute | Value |
|---|---|
| Ingestion API Supported | ✓ Yes |
Source: Connector definition
| Column Name | Type |
|---|---|
| AccountID | string |
| Action | string |
| ActionResult | bool |
| ActionType | string |
| ActorEmail | string |
| ActorID | string |
| ActorIP | string |
| ActorType | string |
| AlertID | string |
| AlertReasons | string |
| Allowed | bool |
| AppDomain | string |
| Application | string |
| ApplicationIDs | int |
| ApplicationNames | string |
| AppUUID | string |
| AssetDisplayName | string |
| AssetExternalID | string |
| AssetLink | string |
| AssetMetadata | string |
| Attachments | string |
| AttackCampaignID | string |
| AttackID | string |
| AttackVector | string |
| AuthoritativeNameServerIPs | string |
| BlockedFileHash | string |
| BlockedFileName | string |
| BlockedFileReason | string |
| BlockedFileSize | int |
| BlockedFileType | string |
| Body | string |
| BodyLength | int |
| BotDetectionIDs | int |
| BotDetectionTags | string |
| BotScore | int |
| BotScoreSrc | string |
| BotTags | string |
| BytesReceived | int |
| BytesSent | int |
| CacheCacheStatus | string |
| CacheReserveUsed | bool |
| CacheResponseBytes | int |
| CacheResponseStatus | int |
| CacheTieredFill | bool |
| CategoryIDs | int |
| CategoryNames | string |
| CC | string |
| CCName | string |
| ClientAddress | string |
| ClientASN | int |
| ClientASNDescription | string |
| ClientBytes | int |
| ClientCity | string |
| ClientCountry | string |
| ClientDeviceType | string |
| ClientIP | string |
| ClientIPASN | int |
| ClientIPASNDescription | string |
| ClientIPClass | string |
| ClientIPCountry | string |
| ClientLatitude | string |
| ClientLongitude | string |
| ClientMatchedIpFirewall | string |
| ClientMTLSAuthCertFingerprint | string |
| ClientMTLSAuthStatus | string |
| ClientPort | int |
| ClientProto | string |
| ClientRefererHost | string |
| ClientRefererPath | string |
| ClientRefererQuery | string |
| ClientRefererScheme | string |
| ClientRegionCode | string |
| ClientRequestBytes | int |
| ClientRequestHost | string |
| ClientRequestMethod | string |
| ClientRequestPath | string |
| ClientRequestProtocol | string |
| ClientRequestQuery | string |
| ClientRequestReferer | string |
| ClientRequestScheme | string |
| ClientRequestSource | string |
| ClientRequestURI | string |
| ClientRequestUserAgent | string |
| ClientResponseCode | int |
| ClientSrcPort | int |
| ClientSSLCipher | string |
| ClientSSLProtocol | string |
| ClientTCPHandshakeDurationMs | int |
| ClientTcpRtt | int |
| ClientTCPRTTMs | int |
| ClientTLSCipher | string |
| ClientTlsClientHelloServerName | string |
| ClientTLSHandshakeDurationMs | int |
| ClientTlsProtocol | string |
| ClientTlsStatus | string |
| ClientTLSVersion | string |
| ClientVersion | string |
| ClientXRequestedWith | string |
| ClusterID | string |
| CNAMECategoryIDs | int |
| CNAMECategoryNames | string |
| CNAMEs | string |
| CNAMEsReversed | string |
| ColoCity | string |
| ColoCode | string |
| ColoCountry | string |
| ColoGeoHash | string |
| ColoID | int |
| ColoName | string |
| Connection | string |
| ConnectionCloseReason | string |
| ConnectionReuse | bool |
| ConnectTimestamp | string |
| ContentScanObjResults | string |
| ContentScanObjSizes | int |
| ContentScanObjTypes | string |
| Cookies | string |
| Country | string |
| CPUTimeMs | int |
| CreatedAt | string |
| CSPDirective | string |
| CustomResolveDurationMs | int |
| CustomResolverAddress | string |
| CustomResolverPolicyID | string |
| CustomResolverPolicyName | string |
| CustomResolverResponse | string |
| Datetime | string |
| Decision | string |
| Description | string |
| DestAddr | string |
| DestinationASN | int |
| DestinationASNName | string |
| DestinationCountry | string |
| DestinationGeoHash | string |
| DestinationIP | string |
| DestinationIPContinentCode | string |
| DestinationIPCountryCode | string |
| DestinationPort | int |
| DestinationTunnelID | string |
| DetectedProtocol | string |
| DetectedTimestamp | string |
| DeviceID | string |
| DeviceManufacturer | string |
| DeviceModel | string |
| DeviceName | string |
| DeviceSerialNumber | string |
| DeviceType | string |
| Direction | string |
| DisconnectTimestamp | string |
| DispatchNamespace | string |
| DoHSubdomain | string |
| DomainName | string |
| DoTSubdomain | string |
| DownloadedFileNames | string |
| DownloadMatchedDlpProfileEntries | string |
| DownloadMatchedDlpProfiles | string |
| DstIP | string |
| DstPort | int |
| EDEErrors | int |
| EdgeCFConnectingO2O | bool |
| EdgeColoCode | string |
| EdgeColoID | int |
| EdgeEndTimestamp | string |
| EdgePathingOp | string |
| EdgePathingSrc | string |
| EdgePathingStatus | string |
| EdgeRequestHost | string |
| EdgeResponseBodyBytes | int |
| EdgeResponseBytes | int |
| EdgeResponseCompressionRatio | string |
| EdgeResponseContentType | string |
| EdgeResponseStatus | int |
| EdgeServerIP | string |
| EdgeStartTimestamp | string |
| EdgeTimeToFirstByteMs | int |
| EDNSSubnet | string |
| EDNSSubnetLength | int |
| EgressColoName | string |
| EgressIP | string |
| EgressPort | int |
| EgressRuleID | string |
| EgressRuleName | string |
| string | |
| Entrypoint | string |
| Error | string |
| Event | string |
| EventDetails | dynamic |
| EventTimestampMs | int |
| EventType | string |
| Exceptions | string |
| FileInfo | string |
| FinalDisposition | string |
| FindingTypeDisplayName | string |
| FindingTypeID | string |
| FindingTypeSeverity | string |
| ForensicCopyID | string |
| ForensicCopyStatus | string |
| From | string |
| FromName | string |
| GatewayRequestID | string |
| GREChecksum | int |
| GREEtherType | int |
| GREHeaderLength | int |
| GREKey | int |
| GRESequenceNumber | int |
| GREVersion | int |
| Headers | string |
| Host | string |
| HTTPHost | string |
| HTTPMethod | string |
| HTTPStatusCode | int |
| HTTPVersion | string |
| ICMPChecksum | int |
| ICMPCode | int |
| ICMPType | int |
| ID | string |
| IngressColoName | string |
| InitialCategoryIDs | int |
| InitialCategoryNames | string |
| InitialResolvedIPs | string |
| InstanceID | string |
| IntegrationDisplayName | string |
| IntegrationID | string |
| IntegrationPolicyVendor | string |
| Interface | string |
| InternalDNSFallbackStrategy | string |
| InternalDNSRCode | int |
| InternalDNSViewID | string |
| InternalDNSZoneID | string |
| IP | string |
| IPAddress | string |
| IPDestinationAddress | string |
| IPDestinationSubnet | string |
| IpFirewall | bool |
| IPFragmentOffset | int |
| IPHeaderLength | int |
| IPMoreFragments | int |
| IPProtocol | int |
| IPProtocolName | string |
| IPSourceAddress | string |
| IPSourceSubnet | string |
| IPTotalLength | int |
| IPTotalLengthBuckets | int |
| IPTTL | int |
| IPTTLBuckets | int |
| IPv4Checksum | int |
| IPv4DontFragment | int |
| IPv4DSCP | int |
| IPv4ECN | int |
| IPv4Identification | int |
| IPv4Options | string |
| IPv6DSCP | int |
| IPv6ECN | int |
| IPv6ExtensionHeaders | string |
| IPv6FlowLabel | int |
| IPv6Identification | int |
| IsIsolated | bool |
| IsResponseCached | bool |
| JA3Hash | string |
| JA4 | string |
| JA4Signals | string |
| Kind | string |
| LastKnownGoodColoCode | string |
| LeakedCredentialCheckResult | string |
| Links | string |
| Location | string |
| LocationID | string |
| Logs | string |
| LogType | string |
| MatchedCategoryIDs | int |
| MatchedCategoryNames | string |
| MatchedIndicatorFeedIDs | int |
| MatchedIndicatorFeedNames | string |
| MatchIndex | int |
| MessageDeliveryMode | string |
| MessageID | string |
| Metadata | string |
| Method | string |
| MitigationReason | string |
| MitigationScope | string |
| MitigationSystem | string |
| NewValue | string |
| Offramp | string |
| OldValue | string |
| Origin | string |
| OriginalSender | string |
| OriginatorRayID | string |
| OriginBytes | int |
| OriginDNSResponseTimeMs | int |
| OriginIP | string |
| OriginPort | int |
| OriginProto | string |
| OriginRequestHeaderSendDurationMs | int |
| OriginResponseBytes | int |
| OriginResponseDurationMs | int |
| OriginResponseHeaderReceiveDurationMs | int |
| OriginResponseHTTPExpires | string |
| OriginResponseHTTPLastModified | string |
| OriginResponseStatus | int |
| OriginSSLProtocol | string |
| OriginTCPHandshakeDurationMs | int |
| OriginTcpRtt | int |
| OriginTLSCertificateIssuer | string |
| OriginTLSCertificateValidationResult | string |
| OriginTLSCipher | string |
| OriginTlsFingerprint | string |
| OriginTLSHandshakeDurationMs | int |
| OriginTlsMode | string |
| OriginTlsProtocol | string |
| OriginTlsStatus | string |
| OriginTLSVersion | string |
| OSVersion | string |
| Outcome | string |
| OverrideIP | string |
| OverridePort | int |
| OwnerID | string |
| PageURL | string |
| ParentRayID | string |
| Password | string |
| Payload | string |
| Phase | string |
| PolicyID | string |
| PolicyName | string |
| PostureCheckName | string |
| PostureCheckType | string |
| PostureEvaluatedResult | bool |
| PostureExpectedJSON | string |
| PostureReceivedJSON | string |
| PrivateAppAUD | string |
| ProgramFinishDatetime | string |
| ProgramID | string |
| ProgramStartDatetime | string |
| ProgramType | string |
| Protocol | string |
| ProtocolState | string |
| ProxyEndpoint | string |
| ProxyProtocol | string |
| PTY | string |
| PurposeJustificationPrompt | string |
| PurposeJustificationResponse | string |
| Quarantined | bool |
| QueryCategoryIDs | int |
| QueryCategoryNames | string |
| QueryDO | bool |
| QueryID | string |
| QueryIndicatorFeedIDs | int |
| QueryIndicatorFeedNames | string |
| QueryName | string |
| QueryNameReversed | string |
| QueryRD | bool |
| QuerySize | int |
| QueryTCP | bool |
| QueryType | int |
| QueryTypeName | string |
| R2Path | string |
| RayID | string |
| RCode | int |
| RData | string |
| RedirectTargetURI | string |
| Ref | string |
| Referer | string |
| Referrer | string |
| RegistrationID | string |
| ReplyTo | string |
| ReplyToName | string |
| RequestContextCategoryIDs | int |
| RequestContextCategoryNames | string |
| RequestHeaders | string |
| RequestID | string |
| ResolvedIPCategoryIDs | int |
| ResolvedIPCategoryNames | string |
| ResolvedIPContinentCodes | string |
| ResolvedIPCountryCodes | string |
| ResolverDecision | string |
| ResourceID | string |
| ResourceRecords | string |
| ResourceRecordsJSON | string |
| ResourceType | string |
| ResponseCached | bool |
| ResponseCachedStale | bool |
| ResponseHeaders | string |
| ResponseReason | string |
| RuleEvaluationDurationMs | int |
| RuleID | string |
| RuleName | string |
| RulesetID | string |
| RulesetOverrideID | string |
| SampleInterval | int |
| ScriptName | string |
| ScriptTags | string |
| ScriptVersion | string |
| SecurityAction | string |
| SecurityActions | string |
| SecurityRuleDescription | string |
| SecurityRuleID | string |
| SecurityRuleIDs | string |
| SecuritySources | string |
| ServerAddress | string |
| SessionEndTime | datetime |
| SessionFinishDatetime | string |
| SessionID | string |
| SessionStartDatetime | string |
| SessionStartTime | datetime |
| SignatureID | int |
| SignatureMessage | string |
| SignatureRevision | int |
| SinkholeID | string |
| SmartRouteColoID | int |
| SMTPEnvelopeFrom | string |
| SMTPEnvelopeTo | string |
| SMTPHeloServerIP | string |
| SMTPHeloServerIPAsName | string |
| SMTPHeloServerIPAsNumber | string |
| SMTPHeloServerIPGeo | string |
| SMTPHeloServerName | string |
| SNI | string |
| Source | string |
| SourceASN | int |
| SourceASNName | string |
| SourceCountry | string |
| SourceGeoHash | string |
| SourceInternalIP | string |
| SourceIP | string |
| SourceIPContinentCode | string |
| SourceIPCountryCode | string |
| SourcePort | int |
| SrcAddr | string |
| SrcIP | string |
| SrcIPContinentCode | string |
| SrcIPCountryCode | string |
| SrcPort | int |
| Status | int |
| Subject | string |
| TargetID | string |
| TCPAcknowledgementNumber | int |
| TCPChecksum | int |
| TCPDataOffset | int |
| TCPFlags | int |
| TCPFlagsString | string |
| TCPMSS | int |
| TCPOptions | string |
| TCPSACKBlocks | string |
| TCPSACKPermitted | int |
| TCPSequenceNumber | int |
| TCPTimestampECR | int |
| TCPTimestampValue | int |
| TCPUrgentPointer | int |
| TCPWindowScale | int |
| TCPWindowSize | int |
| TemporaryAccessApprovers | string |
| TemporaryAccessDuration | int |
| ThreatCategories | string |
| TimeGenerated | datetime |
| Timestamp | string |
| TimeZone | string |
| TimeZoneInferredMethod | string |
| To | string |
| ToName | string |
| TransportProtocol | string |
| TriggeredRuleID | string |
| UDPChecksum | int |
| UDPPayloadLength | int |
| UntrustedCertificateAction | string |
| UploadedFileNames | string |
| UploadMatchedDlpProfileEntries | string |
| UploadMatchedDlpProfiles | string |
| UpperTierColoID | int |
| UpstreamIP | string |
| UpstreamResponseCode | int |
| UpstreamResponseTimeMs | int |
| URI | string |
| URL | string |
| URLContainsCDNCGIPath | bool |
| URLHost | string |
| UserAgent | string |
| UserEmail | string |
| UserID | string |
| Username | string |
| UserUID | string |
| Verdict | string |
| VirtualNetworkID | string |
| VirtualNetworkName | string |
| WAFAttackScore | int |
| WAFRCEAttackScore | int |
| WAFSQLiAttackScore | int |
| WAFXSSAttackScore | int |
| WallTimeMs | int |
| When | string |
| WorkerCPUTime | int |
| WorkerScriptName | string |
| WorkerStatus | string |
| WorkerSubrequest | bool |
| WorkerSubrequestCount | int |
| WorkerWallTimeUs | int |
| ZoneName | string |
This table is used by the following solutions:
This table is ingested by the following connectors:
| Connector | Selection Criteria |
|---|---|
| Cloudflare (Using Blob Container) (via Codeless Connector Framework) |
In solution Cloudflare:
In solution Cloudflare CCF:
In solution Cloudflare:
In solution Cloudflare CCF:
In solution Cloudflare CCF:
| Workbook | Selection Criteria |
|---|---|
| Cloudflare |
| Parser | Solution | Selection Criteria |
|---|---|---|
| Cloudflare | Cloudflare | |
| Cloudflare | Cloudflare CCF |
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊