Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊
| Attribute | Value |
|---|---|
| Custom Log V1 | Yes 🔶 — uses type-suffixed column names |
| Ingestion API Supported | ✓ Yes |
Source: KQL validation test schema
| Column Name | Type |
|---|---|
| Category | string |
| confidence_s | string |
| created_t | datetime |
| customer_id_s | string |
| device_ip_s | string |
| event_type_s | string |
| first_seen_t | datetime |
| indicators_s | string |
| last_seen_t | datetime |
| muted_b | bool |
| muted_comment_s | string |
| muted_rule_b | bool |
| name_s | string |
| other_dhcp_machost_pairs_s | string |
| other_pdns_hostnames_s | string |
| primary_dhcp_machost_pairs_s | string |
| primary_pdns_hostnames_s | string |
| product_s | string |
| rule_uuid_g | string |
| sensor_id_s | string |
| severity_s | string |
| signal_version_s | string |
| status_s | string |
| subject_s | string |
| TimeGenerated | datetime |
| timestamp_t | datetime |
| Type | string |
| updated_t | datetime |
| uuid_g | string |
| vendor_s | string |
This table is used by the following solutions:
This table is ingested by the following connectors:
| Connector | Selection Criteria |
|---|---|
| Fortinet FortiNDR Cloud |
In solution Fortinet FortiNDR Cloud:
| Workbook | Selection Criteria |
|---|---|
| FortinetFortiNdrCloudWorkbook |
| Parser | Solution | Selection Criteria |
|---|---|---|
| Fortinet_FortiNDR_Cloud | Fortinet FortiNDR Cloud |
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊