Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · Logic Apps · 📊
Internal Use Table: This table is created and used internally by the VaikoraSecurityCenter solution. It is written to by playbooks for solution-specific data storage.
| Attribute | Value |
|---|---|
| Category | Internal |
| Custom Log V1 | Yes 🔶 — uses type-suffixed column names |
| Ingestion API Supported | ✓ Yes |
Source: KQL validation test schema
| Column Name | Type |
|---|---|
| ActionType_s | string |
| AgentId_s | string |
| AlertId_s | string |
| AnomalyReason_s | string |
| AnomalyScore_d | real |
| ConfidenceScore_d | real |
| Description_s | string |
| DestinationHost_s | string |
| DestinationIP_s | string |
| FilePath_s | string |
| IsAnomaly_b | bool |
| LogHash_s | string |
| PolicyDecision_s | string |
| PolicyId_s | string |
| ProcessName_s | string |
| ResourceType_s | string |
| Severity_s | string |
| SourceHost_s | string |
| SourceIP | string |
| ThreatDetected_b | bool |
| TimeGenerated | datetime |
| Title_s | string |
| UserName_s | string |
This table is used by the following solutions:
In solution VaikoraSecurityCenter:
| Analytic Rule | Selection Criteria |
|---|---|
| Vaikora - Anomaly detection | |
| Vaikora - Feed outage detection | |
| Vaikora - High severity security alerts |
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · Logic Apps · 📊