Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊
| Attribute | Value |
|---|---|
| Custom Log V1 | Yes 🔶 — uses type-suffixed column names |
| Ingestion API Supported | ✓ Yes |
Source: KQL validation test schema
| Column Name | Type |
|---|---|
| _ResourceId | string |
| apiReportURL_s | string |
| blockSet_s | string |
| campaignBrandSet_s | string |
| campaignLanguageSet_s | string |
| campaignScreenshotSet_s | string |
| Computer | string |
| deliveryMechanisms_s | string |
| domainSet_s | string |
| executableSet_s | string |
| executiveSummary_s | string |
| extractedStringSet_s | string |
| feeds_s | string |
| firstPublished_d | real |
| hasReport_b | bool |
| id_d | real |
| label_s | string |
| lastPublished_d | real |
| malwareFamilySet_s | string |
| ManagementGroupName | string |
| MG | string |
| naicsCodes_s | string |
| RawData | string |
| relatedSearchTags_s | string |
| ReportDownload_HTML__s | string |
| ReportDownload_PDF__s | string |
| reportURL_s | string |
| secureEmailGatewaySet_s | string |
| senderEmailSet_s | string |
| senderIpSet_s | string |
| senderNameSet_s | string |
| SourceSystem | string |
| spamUrlSet_s | string |
| subjectSet_s | string |
| TenantId | string |
| threatDetailURL_s | string |
| threatType_s | string |
| TimeGenerated | datetime |
| Type | string |
This table is used by the following solutions:
This table is ingested by the following connectors:
| Connector | Selection Criteria |
|---|---|
| Cofense Intelligence Threat Indicators Ingestion |
In solution CofenseIntelligence:
| Workbook | Selection Criteria |
|---|---|
| CofenseIntelligenceThreatIndicators |
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊