Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊
| Attribute | Value |
|---|---|
| Ingestion API Supported | ✓ Yes |
Source: KQL validation test schema
| Column Name | Type |
|---|---|
| acknowledged_by | dynamic |
| acknowledged_date | dynamic |
| alert_data | dynamic |
| analysis_report | dynamic |
| attachments | dynamic |
| category | string |
| closed_by | dynamic |
| closure_date | dynamic |
| closure_reason | dynamic |
| closure_reason_description | dynamic |
| confidence | int |
| created_by | dynamic |
| created_date | datetime |
| description | string |
| environment | string |
| event_title | string |
| event_type | string |
| id | int |
| impacts | dynamic |
| indicators | dynamic |
| iocs | dynamic |
| mitre | dynamic |
| modification_date | datetime |
| publish_date | string |
| recommendation | string |
| ref_id | string |
| related_assets | dynamic |
| related_entities | dynamic |
| severity | string |
| source | string |
| source_category | string |
| status | string |
| tags | dynamic |
| targeted_brands | dynamic |
| targeted_vectors | dynamic |
| threat_actor | string |
| ticket_id | dynamic |
| TimeGenerated | datetime |
This table is used by the following solutions:
This table is ingested by the following connectors:
| Connector | Selection Criteria |
|---|---|
| Check Point Cyberint Alerts Connector (via Codeless Connector Platform) |
In solution Check Point Cyberint Alerts:
| Analytic Rule | Selection Criteria |
|---|---|
| Check Point Exposure Management - Alert Ingestion Anomaly |
In solution Check Point Cyberint Alerts:
| Workbook | Selection Criteria |
|---|---|
| CPEMAlertOverview |
| Parser | Solution | Selection Criteria |
|---|---|---|
| CPEMAlerts | Check Point Cyberint Alerts |
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊