Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊
| Attribute | Value |
|---|---|
| Ingestion API Supported | ✓ Yes |
Source: KQL validation test schema
| Column Name | Type |
|---|---|
| Created | datetime |
| CustomerId | string |
| data | dynamic |
| description | string |
| DvcAction | string |
| DvcHostname | string |
| event_service_event_id | string |
| EventEndTime | datetime |
| EventOriginalUid | string |
| EventProduct | string |
| EventSeverity | string |
| EventType | string |
| EventVendor | string |
| info | dynamic |
| Source | string |
| threat_cleanable | bool |
| ThreatName | string |
| TimeGenerated | datetime |
This table is used by the following solutions:
This table is ingested by the following connectors:
| Connector | Selection Criteria |
|---|---|
| Sophos Endpoint Protection (via Codeless Connector Platform) |
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊