Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊
| Attribute | Value |
|---|---|
| Ingestion API Supported | ✓ Yes |
Source: KQL validation test schema
| Column Name | Type |
|---|---|
| AlarmDate | string |
| AlarmId | string |
| AlarmMainType | string |
| AlarmPayload | dynamic |
| AlarmSubType | string |
| AlarmText | string |
| CompanyId | string |
| Severity | string |
| SourceSystem | string |
| Status | string |
| TenantId | string |
| TimeGenerated | datetime |
| Title | string |
| Type | string |
This table is used by the following solutions:
In solution SOCRadar:
| Analytic Rule | Selection Criteria |
|---|---|
| SOCRadar Alarm Volume Spike | |
| SOCRadar High or Critical Severity Alarm |
In solution SOCRadar:
| Hunting Query | Selection Criteria |
|---|---|
| SOCRadar Alarm Overview | |
| SOCRadar Alarm Trends | |
| SOCRadar Critical Alarms |
In solution SOCRadar:
| Workbook | Selection Criteria |
|---|---|
| SOCRadar-Dashboard |
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊