Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊
| Attribute | Value |
|---|---|
| Ingestion API Supported | ✓ Yes |
Source: KQL validation test schema
| Column Name | Type |
|---|---|
| category | string |
| cloudOfficeTenantUuid | string |
| context | dynamic |
| detectionUuid | dynamic |
| deviceDisplayName | string |
| deviceUuid | string |
| displayName | string |
| edrRuleUuid | string |
| groupSize | int |
| networkCommunication | dynamic |
| note | string |
| objectHashSha1 | string |
| objectName | string |
| objectSizeBytes | int |
| objectTypeName | string |
| objectUrl | string |
| occurTime | string |
| processCommandline | string |
| processPath | string |
| processUuid | string |
| resolved | bool |
| responses | dynamic |
| scanUuid | string |
| severityLevel | string |
| severityScore | string |
| TimeGenerated | datetime |
| triggeringEvent | dynamic |
| typeName | string |
| userNameBase | string |
This table is used by the following solutions:
This table is ingested by the following connectors:
| Connector | Selection Criteria |
|---|---|
| ESET Protect Platform |
| Parser | Solution | Selection Criteria |
|---|---|---|
| ESETProtectPlatform | ESET Protect Platform |
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊