Adding columns and parser update
This commit is contained in:
Jaya Kalapatapu (Tata Consultancy Services Ltd)
Родитель
b87eab2aa5
Коммит
6e32a4f23c
Двоичные данные
DataConnectors/Netskope/AzureFunctionNetskope.zip
Двоичные данные
DataConnectors/Netskope/AzureFunctionNetskope.zip
Двоичный файл не отображается.
|
|
@ -133,25 +133,25 @@ function Netskope () {
|
||||||
{
|
{
|
||||||
$netskopeevents | ForEach-Object{
|
$netskopeevents | ForEach-Object{
|
||||||
if($_.dlp_incident_id -ne $NULL){
|
if($_.dlp_incident_id -ne $NULL){
|
||||||
$_.dlp_incident_id = [string]$_.dlp_incident_id
|
$_.dlp_incidentid = [string]$_.dlp_incident_id
|
||||||
}
|
}
|
||||||
if($_.dlp_parent_id -ne $NULL){
|
if($_.dlp_parent_id -ne $NULL){
|
||||||
$_.dlp_parent_id = [string]$_.dlp_parent_id
|
$_.dlp_parentid = [string]$_.dlp_parent_id
|
||||||
}
|
}
|
||||||
if($_.connection_id -ne $NULL){
|
if($_.connection_id -ne $NULL){
|
||||||
$_.connection_id = [string]$_.connection_id
|
$_.connectionid = [string]$_.connection_id
|
||||||
}
|
}
|
||||||
if($_.app_session_id -ne $NULL){
|
if($_.app_session_id -ne $NULL){
|
||||||
$_.app_session_id = [string]$_.app_session_id
|
$_.app_sessionid = [string]$_.app_session_id
|
||||||
}
|
}
|
||||||
if($_.transaction_id -ne $NULL){
|
if($_.transaction_id -ne $NULL){
|
||||||
$_.transaction_id = [string]$_.transaction_id
|
$_.transactionid = [string]$_.transaction_id
|
||||||
}
|
}
|
||||||
if($_.browser_session_id -ne $NULL){
|
if($_.browser_session_id -ne $NULL){
|
||||||
$_.browser_session_id = [string]$_.browser_session_id
|
$_.browser_sessionid = [string]$_.browser_session_id
|
||||||
}
|
}
|
||||||
if($_.request_id -ne $NULL){
|
if($_.request_id -ne $NULL){
|
||||||
$_.request_id = [string]$_.request_id
|
$_.requestid = [string]$_.request_id
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
|
||||||
|
|
@ -116,7 +116,7 @@ ObjectCount = column_ifexists("object_count_d", ""),
|
||||||
PathId = column_ifexists("path_id_d", ""),
|
PathId = column_ifexists("path_id_d", ""),
|
||||||
PolicyId = column_ifexists("policy_id_d", ""),
|
PolicyId = column_ifexists("policy_id_d", ""),
|
||||||
QuarantineProfileId = column_ifexists("quarantine_profile_id_d", ""),
|
QuarantineProfileId = column_ifexists("quarantine_profile_id_d", ""),
|
||||||
RequestId = column_ifexists("request_id_d", ""),
|
RequestId = column_ifexists("requestid_s", "request_id_d"),
|
||||||
RiskLevelId = column_ifexists("risk_level_id_d", ""),
|
RiskLevelId = column_ifexists("risk_level_id_d", ""),
|
||||||
RunId = column_ifexists("run_id_d", ""),
|
RunId = column_ifexists("run_id_d", ""),
|
||||||
SaProfileId = column_ifexists("sa_profile_id_d", ""),
|
SaProfileId = column_ifexists("sa_profile_id_d", ""),
|
||||||
|
|
@ -133,7 +133,7 @@ Threshold = column_ifexists("threshold_d", ""),
|
||||||
TotalCollaboratorCount = column_ifexists("total_collaborator_count_d", ""),
|
TotalCollaboratorCount = column_ifexists("total_collaborator_count_d", ""),
|
||||||
BinTimestamp = column_ifexists("bin_timestamp_d", ""),
|
BinTimestamp = column_ifexists("bin_timestamp_d", ""),
|
||||||
BrowserSessionId = column_ifexists("browser_session_id_d", ""),
|
BrowserSessionId = column_ifexists("browser_session_id_d", ""),
|
||||||
ConnectionId = column_ifexists("connection_id_d", ""),
|
ConnectionId = column_ifexists("connectionid_s", "connection_id_d"),
|
||||||
LastTimestamp = column_ifexists("last_timestamp_d", ""),
|
LastTimestamp = column_ifexists("last_timestamp_d", ""),
|
||||||
ScanTime = column_ifexists("scan_time_d", ""),
|
ScanTime = column_ifexists("scan_time_d", ""),
|
||||||
ThresholdTime = column_ifexists("threshold_time_d", ""),
|
ThresholdTime = column_ifexists("threshold_time_d", ""),
|
||||||
|
|
@ -143,7 +143,7 @@ ActUser = column_ifexists("act_user_s", ""),
|
||||||
Action = column_ifexists("action_s", ""),
|
Action = column_ifexists("action_s", ""),
|
||||||
ActivityStatus = column_ifexists("activity_status_s", ""),
|
ActivityStatus = column_ifexists("activity_status_s", ""),
|
||||||
ActivityType = column_ifexists("activity_type_s", ""),
|
ActivityType = column_ifexists("activity_type_s", ""),
|
||||||
AppSessionId = column_ifexists("app_session_id_s", ""),
|
AppSessionId = column_ifexists("app_sessionid_s", "app_session_id_d"),
|
||||||
Attachment = column_ifexists("attachment_s", ""),
|
Attachment = column_ifexists("attachment_s", ""),
|
||||||
AuditCategory = column_ifexists("audit_category_s", ""),
|
AuditCategory = column_ifexists("audit_category_s", ""),
|
||||||
AuditType = column_ifexists("audit_type_s", ""),
|
AuditType = column_ifexists("audit_type_s", ""),
|
||||||
|
|
@ -158,8 +158,8 @@ DeviceClassification = column_ifexists("device_classification_s", ""),
|
||||||
DlpFile = column_ifexists("dlp_file_s", ""),
|
DlpFile = column_ifexists("dlp_file_s", ""),
|
||||||
DlpFingerprintClassification = column_ifexists("dlp_fingerprint_classification_s", ""),
|
DlpFingerprintClassification = column_ifexists("dlp_fingerprint_classification_s", ""),
|
||||||
DlpFingerprintMatch = column_ifexists("dlp_fingerprint_match_s", ""),
|
DlpFingerprintMatch = column_ifexists("dlp_fingerprint_match_s", ""),
|
||||||
DlpIncidentId = column_ifexists("dlp_incident_id_s", ""),
|
DlpIncidentId = column_ifexists("dlp_incidentid_s", "dlp_incident_id_d"),
|
||||||
DlpParentId = column_ifexists("dlp_parent_id_s", ""),
|
DlpParentId = column_ifexists("dlp_parentid_s", "dlp_parent_id_d"),
|
||||||
DlpProfile = column_ifexists("dlp_profile_s", ""),
|
DlpProfile = column_ifexists("dlp_profile_s", ""),
|
||||||
DlpRule = column_ifexists("dlp_rule_s", ""),
|
DlpRule = column_ifexists("dlp_rule_s", ""),
|
||||||
DlpRuleSeverity = column_ifexists("dlp_rule_severity_s", ""),
|
DlpRuleSeverity = column_ifexists("dlp_rule_severity_s", ""),
|
||||||
|
|
@ -274,7 +274,7 @@ ThreatMatchField = column_ifexists("threat_match_field_s", ""),
|
||||||
Title = column_ifexists("title_s", ""),
|
Title = column_ifexists("title_s", ""),
|
||||||
ToObject = column_ifexists("to_object_s", ""),
|
ToObject = column_ifexists("to_object_s", ""),
|
||||||
ToUserCategory = column_ifexists("to_user_category_s", ""),
|
ToUserCategory = column_ifexists("to_user_category_s", ""),
|
||||||
TransactionId = column_ifexists("transaction_id_s", ""),
|
TransactionId = column_ifexists("transactionid_s", "transaction_id_d"),
|
||||||
TssMode = column_ifexists("tss_mode_s", ""),
|
TssMode = column_ifexists("tss_mode_s", ""),
|
||||||
TunnelId = column_ifexists("tunnel_id_s", ""),
|
TunnelId = column_ifexists("tunnel_id_s", ""),
|
||||||
Url2Activity = column_ifexists("Url2Activity_s", ""),
|
Url2Activity = column_ifexists("Url2Activity_s", ""),
|
||||||
|
|
|
||||||
Загрузка…
Ссылка в новой задаче