ASIM Process Event ASIM parser

Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊

Back to ASIM Index

Parser Information

Property Value
Parser Name ASimProcessEvent
Built-in Parser _ASim_ProcessEvent
Schema ProcessEvent
Schema Version 0.1.0
Parser Type 📦 Union (schema-level)
Parser Version 0.1.2 (version history)
Last Updated June 3, 2024
Source File Parsers\ASimProcessEvent\Parsers\ASimProcessEvent.yaml

Description

This ASIM parser supports normalizing process event logs from all supported sources to the ASIM ProcessEvent normalized schema.

Products

This union parser includes parsers for the following products:

Product Source Parser Solutions
SentinelOne _ASim_ProcessCreate_SentinelOne
Sysmon for Linux _ASim_ProcessEvent_CreateLinuxSysmon Syslog
Security Events _ASim_ProcessEvent_CreateMicrosoftSecurityEvents Windows Security Events
Sysmon _ASim_ProcessEvent_CreateMicrosoftSysmon
Sysmon _ASim_ProcessEvent_CreateMicrosoftSysmonWindowsEvent Windows Forwarded Events
Security Events _ASim_ProcessEvent_CreateMicrosoftWindowsEvents Windows Forwarded Events
Trend Micro Vision One _ASim_ProcessEvent_CreateTrendMicroVisionOne Trend Micro Vision One
VMware Carbon Black Cloud _ASim_ProcessEvent_CreateVMwareCarbonBlackCloud
Microsoft Defender for IoT _ASim_ProcessEvent_MD4IoT
Microsoft 365 Defender for endpoint _ASim_ProcessEvent_Microsoft365D
Native _ASim_ProcessEvent_Native SynqlyIntegrationConnector
VMware Carbon Black Cloud
Sysmon for Linux _ASim_ProcessEvent_TerminateLinuxSysmon Syslog
Security Events _ASim_ProcessEvent_TerminateMicrosoftSecurityEvents Windows Security Events
Microsoft Windows Events Sysmon _ASim_ProcessEvent_TerminateMicrosoftSysmon
Microsoft Windows Events Sysmon _ASim_ProcessEvent_TerminateMicrosoftSysmonWindowsEvent Windows Forwarded Events
Security Events _ASim_ProcessEvent_TerminateMicrosoftWindowsEvents Windows Forwarded Events
VMware Carbon Black Cloud _ASim_ProcessEvent_TerminateVMwareCarbonBlackCloud

References

Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊

Back to ASIM Index