Adding columns and parser update
This commit is contained in:
Jaya Kalapatapu (Tata Consultancy Services Ltd)
Родитель
b87eab2aa5
Коммит
6e32a4f23c
Двоичные данные
DataConnectors/Netskope/AzureFunctionNetskope.zip
Двоичные данные
DataConnectors/Netskope/AzureFunctionNetskope.zip
Двоичный файл не отображается.
|
|
@ -133,25 +133,25 @@ function Netskope () {
|
|||
{
|
||||
$netskopeevents | ForEach-Object{
|
||||
if($_.dlp_incident_id -ne $NULL){
|
||||
$_.dlp_incident_id = [string]$_.dlp_incident_id
|
||||
$_.dlp_incidentid = [string]$_.dlp_incident_id
|
||||
}
|
||||
if($_.dlp_parent_id -ne $NULL){
|
||||
$_.dlp_parent_id = [string]$_.dlp_parent_id
|
||||
$_.dlp_parentid = [string]$_.dlp_parent_id
|
||||
}
|
||||
if($_.connection_id -ne $NULL){
|
||||
$_.connection_id = [string]$_.connection_id
|
||||
$_.connectionid = [string]$_.connection_id
|
||||
}
|
||||
if($_.app_session_id -ne $NULL){
|
||||
$_.app_session_id = [string]$_.app_session_id
|
||||
$_.app_sessionid = [string]$_.app_session_id
|
||||
}
|
||||
if($_.transaction_id -ne $NULL){
|
||||
$_.transaction_id = [string]$_.transaction_id
|
||||
$_.transactionid = [string]$_.transaction_id
|
||||
}
|
||||
if($_.browser_session_id -ne $NULL){
|
||||
$_.browser_session_id = [string]$_.browser_session_id
|
||||
$_.browser_sessionid = [string]$_.browser_session_id
|
||||
}
|
||||
if($_.request_id -ne $NULL){
|
||||
$_.request_id = [string]$_.request_id
|
||||
$_.requestid = [string]$_.request_id
|
||||
}
|
||||
}
|
||||
}
|
||||
|
|
|
|||
|
|
@ -116,7 +116,7 @@ ObjectCount = column_ifexists("object_count_d", ""),
|
|||
PathId = column_ifexists("path_id_d", ""),
|
||||
PolicyId = column_ifexists("policy_id_d", ""),
|
||||
QuarantineProfileId = column_ifexists("quarantine_profile_id_d", ""),
|
||||
RequestId = column_ifexists("request_id_d", ""),
|
||||
RequestId = column_ifexists("requestid_s", "request_id_d"),
|
||||
RiskLevelId = column_ifexists("risk_level_id_d", ""),
|
||||
RunId = column_ifexists("run_id_d", ""),
|
||||
SaProfileId = column_ifexists("sa_profile_id_d", ""),
|
||||
|
|
@ -133,7 +133,7 @@ Threshold = column_ifexists("threshold_d", ""),
|
|||
TotalCollaboratorCount = column_ifexists("total_collaborator_count_d", ""),
|
||||
BinTimestamp = column_ifexists("bin_timestamp_d", ""),
|
||||
BrowserSessionId = column_ifexists("browser_session_id_d", ""),
|
||||
ConnectionId = column_ifexists("connection_id_d", ""),
|
||||
ConnectionId = column_ifexists("connectionid_s", "connection_id_d"),
|
||||
LastTimestamp = column_ifexists("last_timestamp_d", ""),
|
||||
ScanTime = column_ifexists("scan_time_d", ""),
|
||||
ThresholdTime = column_ifexists("threshold_time_d", ""),
|
||||
|
|
@ -143,7 +143,7 @@ ActUser = column_ifexists("act_user_s", ""),
|
|||
Action = column_ifexists("action_s", ""),
|
||||
ActivityStatus = column_ifexists("activity_status_s", ""),
|
||||
ActivityType = column_ifexists("activity_type_s", ""),
|
||||
AppSessionId = column_ifexists("app_session_id_s", ""),
|
||||
AppSessionId = column_ifexists("app_sessionid_s", "app_session_id_d"),
|
||||
Attachment = column_ifexists("attachment_s", ""),
|
||||
AuditCategory = column_ifexists("audit_category_s", ""),
|
||||
AuditType = column_ifexists("audit_type_s", ""),
|
||||
|
|
@ -158,8 +158,8 @@ DeviceClassification = column_ifexists("device_classification_s", ""),
|
|||
DlpFile = column_ifexists("dlp_file_s", ""),
|
||||
DlpFingerprintClassification = column_ifexists("dlp_fingerprint_classification_s", ""),
|
||||
DlpFingerprintMatch = column_ifexists("dlp_fingerprint_match_s", ""),
|
||||
DlpIncidentId = column_ifexists("dlp_incident_id_s", ""),
|
||||
DlpParentId = column_ifexists("dlp_parent_id_s", ""),
|
||||
DlpIncidentId = column_ifexists("dlp_incidentid_s", "dlp_incident_id_d"),
|
||||
DlpParentId = column_ifexists("dlp_parentid_s", "dlp_parent_id_d"),
|
||||
DlpProfile = column_ifexists("dlp_profile_s", ""),
|
||||
DlpRule = column_ifexists("dlp_rule_s", ""),
|
||||
DlpRuleSeverity = column_ifexists("dlp_rule_severity_s", ""),
|
||||
|
|
@ -274,7 +274,7 @@ ThreatMatchField = column_ifexists("threat_match_field_s", ""),
|
|||
Title = column_ifexists("title_s", ""),
|
||||
ToObject = column_ifexists("to_object_s", ""),
|
||||
ToUserCategory = column_ifexists("to_user_category_s", ""),
|
||||
TransactionId = column_ifexists("transaction_id_s", ""),
|
||||
TransactionId = column_ifexists("transactionid_s", "transaction_id_d"),
|
||||
TssMode = column_ifexists("tss_mode_s", ""),
|
||||
TunnelId = column_ifexists("tunnel_id_s", ""),
|
||||
Url2Activity = column_ifexists("Url2Activity_s", ""),
|
||||
|
|
|
|||
Загрузка…
Ссылка в новой задаче