Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊
| Attribute | Value |
|---|---|
| Ingestion API Supported | ✓ Yes |
Source: KQL validation test schema
| Column Name | Type |
|---|---|
| cipher | string |
| client_curve_num | dynamic |
| client_ec_point_format | dynamic |
| client_extension | dynamic |
| client_issuer | string |
| client_subject | string |
| client_version | string |
| client_version_num | int |
| curve | string |
| established | bool |
| id_ip_ver | string |
| id_orig_h | string |
| id_orig_p | int |
| id_resp_h | string |
| id_resp_p | int |
| issuer | string |
| ja3 | string |
| ja3s | string |
| local_orig | bool |
| local_resp | bool |
| next_protocol | string |
| orig_hostname | string |
| orig_huid | string |
| orig_sluid | string |
| resp_hostname | string |
| resp_huid | string |
| resp_sluid | string |
| sensor_uid | string |
| server_extensions | dynamic |
| server_name | string |
| subject | string |
| TimeGenerated | datetime |
| ts | datetime |
| uid | string |
| version | string |
| version_num | int |
This table is used by the following solutions:
This table is ingested by the following connectors:
| Connector | Selection Criteria |
|---|---|
| [Recommended] Vectra AI Stream via AMA |
| Parser | Solution | Selection Criteria |
|---|---|---|
| vectra_ssl | Vectra AI Stream |
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊