Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊
Source: KQL validation test schema
| Column Name | Type |
|---|---|
| ActingProcessId | dynamic |
| ActingProcessName | dynamic |
| ActorUserId | dynamic |
| ActorUsername | dynamic |
| architecture | string |
| arguments | dynamic |
| attributes | dynamic |
| bios_firmware_versions | dynamic |
| contents | string |
| DstIpAddr | dynamic |
| DstPortNumber | dynamic |
| DvcHostname | dynamic |
| DvcId | dynamic |
| DvcOsVersion | dynamic |
| EffectiveGroupID | dynamic |
| EffectiveGroupName | dynamic |
| EventProduct | string |
| EventSeverity | string |
| EventType | string |
| EventVendor | string |
| exec_args | dynamic |
| exec_chain | dynamic |
| exec_chain_child | dynamic |
| exec_chain_parent | dynamic |
| exec_env | dynamic |
| exit | dynamic |
| file | dynamic |
| GroupID | dynamic |
| GroupName | dynamic |
| header | dynamic |
| host_info | dynamic |
| identity | dynamic |
| key | string |
| metrics | dynamic |
| NetworkProtocolVersion | string |
| page_info | dynamic |
| ParentProcessGuid | dynamic |
| ParentProcessId | dynamic |
| ParentProcessName | dynamic |
| path | dynamic |
| process | dynamic |
| rateLimitingSeconds | int |
| return | dynamic |
| socket_inet | dynamic |
| SrcIpAddr | dynamic |
| subject | dynamic |
| TargetBinarySHA256 | dynamic |
| TargetbinarySignerType | string |
| TargetBinarySigningAppID | string |
| TargetBinarySigningTeamID | string |
| TargetFilePath | dynamic |
| TargetHostname | dynamic |
| TargetModel | dynamic |
| TargetProcessCommandLine | dynamic |
| TargetProcessGuid | dynamic |
| TargetProcessId | dynamic |
| TargetProcessName | dynamic |
| TargetProcessSHA256 | dynamic |
| TargetUserId | dynamic |
| TargetUsername | dynamic |
| texts | string |
| TimeGenerated | datetime |
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊