GuardicoreEnrichingConnections_CL

Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · Logic Apps · 📊

Back to Tables Index

Attribute Value
Ingestion API Supported ✓ Yes

Contents

Schema (45 columns)

Source: KQL validation test schema

Column Name Type
_ResourceId string
Computer string
connection_type string
connector_dest_rule_id string
connector_source_rule_id string
count long
destination_asset_hash long
destination_ip string
destination_node_id string
destination_node_type string
destination_port long
destination_process string
destination_process_full_path string
destination_process_id string
destination_process_name string
destination_windows_service_display_name string
destination_windows_service_name string
has_mismatch_alert bool
id string
ip_protocol string
ManagementGroupName string
MG string
original_policy_verdict string
policy_rule string
policy_ruleset string
policy_verdict string
RawData string
sampling_timestamp int
slot_identifier string
slot_start_time real
source_ip string
source_node_id string
source_node_type string
source_process string
source_process_full_path string
source_process_hash string
source_process_id string
source_process_name string
source_windows_service_display_name string
source_windows_service_name string
SourceSystem string
TenantId string
TimeGenerated datetime
Type string
violates_policy bool

Solutions (1)

This table is used by the following solutions:

Content Items Using This Table (1)

Workbooks (1)

In solution Akamai Guardicore:

Workbook Selection Criteria
GuardicoreIncident

Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · Logic Apps · 📊

Back to Tables Index