Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊
| Attribute | Value |
|---|---|
| Ingestion API Supported | ✓ Yes |
Source: KQL validation test schema
| Column Name | Type |
|---|---|
| Activity | string |
| AdditionalExtensions | string |
| DeviceAction | string |
| DeviceCustomString1 | string |
| DeviceCustomString1Label | string |
| DeviceCustomString2 | string |
| DeviceCustomString2Label | string |
| DeviceEventClassID | string |
| DeviceVendor | string |
| LogSeverity | int |
| Message | string |
| PersistenceTimestamp | datetime |
| SimplifiedDeviceAction | string |
| SourceHostName | string |
| SourceUserName | string |
| TimeGenerated | datetime |
This table is used by the following solutions:
This table is ingested by the following connectors:
| Connector | Selection Criteria |
|---|---|
| WithSecure Elements API (Azure Function) |
In solution WithSecureElementsViaFunction:
| Workbook | Selection Criteria |
|---|---|
| WithSecureTopComputersByInfections |
GitHub Only:
| Workbook | Selection Criteria |
|---|---|
| WithSecureTopComputersByInfections |
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊