Summary Rules

Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊

Back to Content Index

Summary rules aggregate and summarize data over time, creating pre-computed results that improve query performance. They are useful for creating dashboards with historical trends or analyzing large volumes of data efficiently. Learn more

25 summary rules across all Microsoft Sentinel solutions.

Jump to: F | N | P | Z

Source: 📦 Solution | 📄 Standalone | 🔗 GitHub Only

F

Name Source
FortinetFortigateNetworkSessionIPSummary 📄 Standalone Content
FortinetFortigateWebSessionIPSummary 📄 Standalone Content

N

Name Source
NetworkSummary_Country 📦 Network Session Essentials
NetworkSummary_Country 📦 Network Session Essentials
NetworkSummary_IP 📦 Network Session Essentials
NetworkSummary_IP 📦 Network Session Essentials
NetworkSummary_Protocol 📦 Network Session Essentials
NetworkSummary_Protocol 📦 Network Session Essentials
NetworkSummary_Result 📦 Network Session Essentials
NetworkSummary_Result 📦 Network Session Essentials
NetworkSummary_Rule 📦 Network Session Essentials
NetworkSummary_Rule 📦 Network Session Essentials
NetworkSummary_Source_Port 📦 Network Session Essentials
NetworkSummary_Source_Port 📦 Network Session Essentials
NetworkSummary_SourceInfo 📦 Network Session Essentials
NetworkSummary_SourceInfo 📦 Network Session Essentials
NetworkSummary_Threat 📦 Network Session Essentials
NetworkSummary_Threat 📦 Network Session Essentials
NetworkSummary_Threat_IOC 📦 Network Session Essentials
NetworkSummary_Threat_IOC 📦 Network Session Essentials

P

Name Source
PaloAltoPANOSNetworkSessionIPSummary 📄 Standalone Content
PaloAltoPANOSWebSessionIPSummary 📄 Standalone Content

Z

Name Source
ZscalarDNSEventsIPSummary 📄 Standalone Content
ZscalarNetworkSessionIPSummary 📄 Standalone Content
ZscalarWebSessionIPSummary 📄 Standalone Content

Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊

Back to Content Index