Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · Logic Apps · 📊
| Attribute | Value |
|---|---|
| Ingestion API Supported | ✓ Yes |
Source: Data Collection Rule definition
| Column Name | Type |
|---|---|
| alertTime | datetime |
| alertUrl | string |
| antigena | boolean |
| category | string |
| compliance | boolean |
| cSensor | boolean |
| cSensorId | string |
| customLabel | string |
| darktraceProduct | string |
| description | string |
| destHost | string |
| destIp | string |
| destMac | string |
| destPort | string |
| details | string |
| deviceCredentials | dynamic |
| deviceHostname | string |
| deviceId | int |
| deviceLabel | string |
| deviceSubnet | string |
| deviceType | string |
| latitude | real |
| longitude | real |
| message | string |
| mitreTechniques | dynamic |
| modelName | string |
| modelTags | dynamic |
| pid | int |
| score | int |
| sid | int |
| sourceHost | string |
| sourceIp | string |
| sourceMac | string |
| sourcePort | string |
| threatId | int |
| TimeGenerated | datetime |
| triggeredComponents | string |
| typeLabel | string |
| uuid | string |
Official Microsoft Learn documentation for field/column information:
This table is used by the following solutions:
This table is ingested by the following connectors:
| Connector | Selection Criteria |
|---|---|
| Darktrace ActiveAI Security Platform Connector |
In solution Darktrace:
| Analytic Rule | Selection Criteria |
|---|---|
| Darktrace Model Alert |
In solution Darktrace:
| Workbook | Selection Criteria |
|---|---|
| DarktraceActiveAISecurityPlatformWorkbook |
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · Logic Apps · 📊