CyfirmaDBWMRansomwareAlerts_CL

Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊

↑ Back to Tables Index

---

Attribute	Value
Ingestion API Supported	✓ Yes

Contents

• Schema
• Solutions
• Connectors
• Content Items

Schema (29 columns)

Source: KQL validation test schema

Column Name	Type
alert_object_uid	string
Alert_title	string
alert_uid	string
asset_comments	string
asset_type	string
category	string
comments	string
description	string
domain	string
dr_domain	string
dr_sub_domain	string
first_seen	datetime
impact	string
last_seen	dynamic
notes	dynamic
published_date	datetime
risk_score	int
safe_flag_comments	string
safe_flag_marked_by	string
safe_flag_marked_date	string
severity	string
signature	string
source	string
status	string
sub_category	string
threat_actors	dynamic
TimeGenerated	datetime
uid	string
use_cases	string

Solutions (1)

This table is used by the following solutions:

• Cyfirma Digital Risk

Connectors (1)

This table is ingested by the following connectors:

Connector	Selection Criteria
CYFIRMA Digital Risk

---

Content Items Using This Table (2)

Analytic Rules (2)

In solution Cyfirma Digital Risk:

Analytic Rule	Selection Criteria
CYFIRMA - Data Breach and Web Monitoring - Ransomware Exposure Detected Rule
CYFIRMA - Data Breach and Web Monitoring - Ransomware Exposure Detected Rule

---

Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊

↑ Back to Tables Index