Azure
/
Azure-Sentinel
зеркало из
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность

gcp dns - update sample data

This commit is contained in:
Vitalii Uslystyi 2021-06-23 11:50:04 +03:00
Родитель 96fb7d82ef
Коммит 90183f5df4
1 изменённых файлов: 30 добавлений и 45 удалений
Показать статистику Скачать Patch файл Скачать Diff файл Показать все файлы Свернуть все файлы

75
Sample Data/Custom/GCP_DNS_CL.json
Просмотреть файл

@ -4,13 +4,12 @@
"SourceSystem": "RestAPI",
"MG": "",
"ManagementGroupName": "",
"TimeGenerated [UTC]": "6/17/2021, 9:20:01.775 AM",
"Computer": "",
"RawData": "",
"resource_labels_zone_name_s": "",
"payload__type_s": "",
"payload_authenticationInfo_principalEmail_s": "",
"payload_requestMetadata_requestAttributes_time_t [UTC]": "",
"payload_requestMetadata_requestAttributes_time_t": "",
"payload_serviceName_s": "",
"payload_methodName_s": "",
"payload_authorizationInfo_s": "",
@ -22,7 +21,7 @@
"log_name_s": "projects/sometestproject-1111111/logs/dns.googleapis.com%2Fdns_queries",
"insert_id_s": "785cqudte9v",
"severity_s": "INFO",
"timestamp_t [UTC]": "6/17/2021, 9:15:33.277 AM",
"timestamp_t": "2021-06-17T09:15:33.00000Z",
"resource_type_s": "dns_query",
"resource_labels_project_id_s": "sometestproject-1111111",
"resource_labels_target_type_s": "external",
@ -51,13 +50,12 @@
"SourceSystem": "RestAPI",
"MG": "",
"ManagementGroupName": "",
"TimeGenerated [UTC]": "6/17/2021, 9:20:01.775 AM",
"Computer": "",
"RawData": "",
"resource_labels_zone_name_s": "",
"payload__type_s": "",
"payload_authenticationInfo_principalEmail_s": "",
"payload_requestMetadata_requestAttributes_time_t [UTC]": "",
"payload_requestMetadata_requestAttributes_time_t": "",
"payload_serviceName_s": "",
"payload_methodName_s": "",
"payload_authorizationInfo_s": "",
@ -69,7 +67,7 @@
"log_name_s": "projects/sometestproject-1111111/logs/dns.googleapis.com%2Fdns_queries",
"insert_id_s": "1erzee4e1ly7r",
"severity_s": "INFO",
"timestamp_t [UTC]": "6/17/2021, 9:15:33.277 AM",
"timestamp_t": "2021-06-17T09:15:33.00000Z",
"resource_type_s": "dns_query",
"resource_labels_project_id_s": "sometestproject-1111111",
"resource_labels_target_type_s": "external",
@ -98,13 +96,12 @@
"SourceSystem": "RestAPI",
"MG": "",
"ManagementGroupName": "",
"TimeGenerated [UTC]": "6/17/2021, 9:20:01.775 AM",
"Computer": "",
"RawData": "",
"resource_labels_zone_name_s": "",
"payload__type_s": "",
"payload_authenticationInfo_principalEmail_s": "",
"payload_requestMetadata_requestAttributes_time_t [UTC]": "",
"payload_requestMetadata_requestAttributes_time_t": "",
"payload_serviceName_s": "",
"payload_methodName_s": "",
"payload_authorizationInfo_s": "",
@ -116,7 +113,7 @@
"log_name_s": "projects/sometestproject-1111111/logs/dns.googleapis.com%2Fdns_queries",
"insert_id_s": "2hxnf2e2bza1",
"severity_s": "INFO",
"timestamp_t [UTC]": "6/17/2021, 9:15:42.611 AM",
"timestamp_t": "2021-06-17T09:15:33.00000Z",
"resource_type_s": "dns_query",
"resource_labels_project_id_s": "sometestproject-1111111",
"resource_labels_target_type_s": "external",
@ -145,13 +142,12 @@
"SourceSystem": "RestAPI",
"MG": "",
"ManagementGroupName": "",
"TimeGenerated [UTC]": "6/17/2021, 9:20:01.775 AM",
"Computer": "",
"RawData": "",
"resource_labels_zone_name_s": "",
"payload__type_s": "",
"payload_authenticationInfo_principalEmail_s": "",
"payload_requestMetadata_requestAttributes_time_t [UTC]": "",
"payload_requestMetadata_requestAttributes_time_t": "",
"payload_serviceName_s": "",
"payload_methodName_s": "",
"payload_authorizationInfo_s": "",
@ -163,7 +159,7 @@
"log_name_s": "projects/sometestproject-1111111/logs/dns.googleapis.com%2Fdns_queries",
"insert_id_s": "1qzt7n8dst7r",
"severity_s": "INFO",
"timestamp_t [UTC]": "6/17/2021, 9:15:42.611 AM",
"timestamp_t": "2021-06-17T09:15:33.00000Z",
"resource_type_s": "dns_query",
"resource_labels_project_id_s": "sometestproject-1111111",
"resource_labels_target_type_s": "external",
@ -192,13 +188,12 @@
"SourceSystem": "RestAPI",
"MG": "",
"ManagementGroupName": "",
"TimeGenerated [UTC]": "6/17/2021, 9:20:01.775 AM",
"Computer": "",
"RawData": "",
"resource_labels_zone_name_s": "",
"payload__type_s": "type.googleapis.com/google.cloud.audit.AuditLog",
"payload_authenticationInfo_principalEmail_s": "test@example.com",
"payload_requestMetadata_requestAttributes_time_t [UTC]": "6/17/2021, 9:15:48.482 AM",
"payload_requestMetadata_requestAttributes_time_t": "2021-06-17T09:15:33.00000Z",
"payload_serviceName_s": "dns.googleapis.com",
"payload_methodName_s": "dns.managedZones.list",
"payload_authorizationInfo_s": "[\n {\n \"permission\": \"dns.managedZones.list\",\n \"granted\": true,\n \"resourceAttributes\": {}\n }\n]",
@ -210,7 +205,7 @@
"log_name_s": "projects/sometestproject-1111111/logs/cloudaudit.googleapis.com%2Fdata_access",
"insert_id_s": "-13w8uqe32bmn",
"severity_s": "INFO",
"timestamp_t [UTC]": "6/17/2021, 9:15:48.421 AM",
"timestamp_t": "2021-06-17T09:15:33.00000Z",
"resource_type_s": "dns_managed_zone",
"resource_labels_project_id_s": "sometestproject-1111111",
"resource_labels_target_type_s": "",
@ -239,13 +234,12 @@
"SourceSystem": "RestAPI",
"MG": "",
"ManagementGroupName": "",
"TimeGenerated [UTC]": "6/17/2021, 9:20:01.775 AM",
"Computer": "",
"RawData": "",
"resource_labels_zone_name_s": "",
"payload__type_s": "type.googleapis.com/google.cloud.audit.AuditLog",
"payload_authenticationInfo_principalEmail_s": "test@example.com",
"payload_requestMetadata_requestAttributes_time_t [UTC]": "6/17/2021, 9:15:49.190 AM",
"payload_requestMetadata_requestAttributes_time_t": "2021-06-17T09:15:33.00000Z",
"payload_serviceName_s": "dns.googleapis.com",
"payload_methodName_s": "dns.managedZones.list",
"payload_authorizationInfo_s": "[\n {\n \"permission\": \"dns.managedZones.list\",\n \"granted\": true,\n \"resourceAttributes\": {}\n }\n]",
@ -257,7 +251,7 @@
"log_name_s": "projects/sometestproject-1111111/logs/cloudaudit.googleapis.com%2Fdata_access",
"insert_id_s": "14t3e32mg4",
"severity_s": "INFO",
"timestamp_t [UTC]": "6/17/2021, 9:15:49.121 AM",
"timestamp_t": "2021-06-17T09:15:33.00000Z",
"resource_type_s": "dns_managed_zone",
"resource_labels_project_id_s": "sometestproject-1111111",
"resource_labels_target_type_s": "",
@ -286,13 +280,12 @@
"SourceSystem": "RestAPI",
"MG": "",
"ManagementGroupName": "",
"TimeGenerated [UTC]": "6/17/2021, 9:20:01.775 AM",
"Computer": "",
"RawData": "",
"resource_labels_zone_name_s": "",
"payload__type_s": "type.googleapis.com/google.cloud.audit.AuditLog",
"payload_authenticationInfo_principalEmail_s": "test@example.com",
"payload_requestMetadata_requestAttributes_time_t [UTC]": "6/17/2021, 9:16:00.080 AM",
"payload_requestMetadata_requestAttributes_time_t": "2021-06-17T09:15:33.00000Z",
"payload_serviceName_s": "dns.googleapis.com",
"payload_methodName_s": "dns.policies.list",
"payload_authorizationInfo_s": "[\n {\n \"permission\": \"dns.policies.list\",\n \"granted\": true,\n \"resourceAttributes\": {}\n }\n]",
@ -304,7 +297,7 @@
"log_name_s": "projects/sometestproject-1111111/logs/cloudaudit.googleapis.com%2Fdata_access",
"insert_id_s": "-ookvsae32fnp",
"severity_s": "INFO",
"timestamp_t [UTC]": "6/17/2021, 9:15:59.826 AM",
"timestamp_t": "2021-06-17T09:15:33.00000Z",
"resource_type_s": "dns_policy",
"resource_labels_project_id_s": "sometestproject-1111111",
"resource_labels_target_type_s": "",
@ -333,13 +326,12 @@
"SourceSystem": "RestAPI",
"MG": "",
"ManagementGroupName": "",
"TimeGenerated [UTC]": "6/17/2021, 9:20:01.775 AM",
"Computer": "",
"RawData": "",
"resource_labels_zone_name_s": "",
"payload__type_s": "type.googleapis.com/google.cloud.audit.AuditLog",
"payload_authenticationInfo_principalEmail_s": "test@example.com",
"payload_requestMetadata_requestAttributes_time_t [UTC]": "6/17/2021, 9:16:01.531 AM",
"payload_requestMetadata_requestAttributes_time_t": "2021-06-17T09:15:33.00000Z",
"payload_serviceName_s": "dns.googleapis.com",
"payload_methodName_s": "dns.managedZones.list",
"payload_authorizationInfo_s": "[\n {\n \"permission\": \"dns.managedZones.list\",\n \"granted\": true,\n \"resourceAttributes\": {}\n }\n]",
@ -351,7 +343,7 @@
"log_name_s": "projects/sometestproject-1111111/logs/cloudaudit.googleapis.com%2Fdata_access",
"insert_id_s": "-mgnj9we32bue",
"severity_s": "INFO",
"timestamp_t [UTC]": "6/17/2021, 9:16:01.455 AM",
"timestamp_t": "2021-06-17T09:15:33.00000Z",
"resource_type_s": "dns_managed_zone",
"resource_labels_project_id_s": "sometestproject-1111111",
"resource_labels_target_type_s": "",
@ -380,13 +372,12 @@
"SourceSystem": "RestAPI",
"MG": "",
"ManagementGroupName": "",
"TimeGenerated [UTC]": "6/17/2021, 9:20:01.775 AM",
"Computer": "",
"RawData": "",
"resource_labels_zone_name_s": "",
"payload__type_s": "type.googleapis.com/google.cloud.audit.AuditLog",
"payload_authenticationInfo_principalEmail_s": "test@example.com",
"payload_requestMetadata_requestAttributes_time_t [UTC]": "6/17/2021, 9:16:01.651 AM",
"payload_requestMetadata_requestAttributes_time_t": "2021-06-17T09:15:33.00000Z",
"payload_serviceName_s": "dns.googleapis.com",
"payload_methodName_s": "dns.managedZones.list",
"payload_authorizationInfo_s": "[\n {\n \"permission\": \"dns.managedZones.list\",\n \"granted\": true,\n \"resourceAttributes\": {}\n }\n]",
@ -398,7 +389,7 @@
"log_name_s": "projects/sometestproject-1111111/logs/cloudaudit.googleapis.com%2Fdata_access",
"insert_id_s": "1yj40de3294k",
"severity_s": "INFO",
"timestamp_t [UTC]": "6/17/2021, 9:16:01.616 AM",
"timestamp_t": "2021-06-17T09:15:33.00000Z",
"resource_type_s": "dns_managed_zone",
"resource_labels_project_id_s": "sometestproject-1111111",
"resource_labels_target_type_s": "",
@ -427,13 +418,12 @@
"SourceSystem": "RestAPI",
"MG": "",
"ManagementGroupName": "",
"TimeGenerated [UTC]": "6/17/2021, 9:20:01.775 AM",
"Computer": "",
"RawData": "",
"resource_labels_zone_name_s": "gcp-cloud",
"payload__type_s": "type.googleapis.com/google.cloud.audit.AuditLog",
"payload_authenticationInfo_principalEmail_s": "test@example.com",
"payload_requestMetadata_requestAttributes_time_t [UTC]": "6/17/2021, 9:16:03.613 AM",
"payload_requestMetadata_requestAttributes_time_t": "2021-06-17T09:15:33.00000Z",
"payload_serviceName_s": "dns.googleapis.com",
"payload_methodName_s": "dns.managedZones.get",
"payload_authorizationInfo_s": "[\n {\n \"permission\": \"dns.managedZones.get\",\n \"granted\": true,\n \"resourceAttributes\": {}\n }\n]",
@ -445,7 +435,7 @@
"log_name_s": "projects/sometestproject-1111111/logs/cloudaudit.googleapis.com%2Fdata_access",
"insert_id_s": "-nuhyu8e328m7",
"severity_s": "INFO",
"timestamp_t [UTC]": "6/17/2021, 9:16:03.606 AM",
"timestamp_t": "2021-06-17T09:15:33.00000Z",
"resource_type_s": "dns_managed_zone",
"resource_labels_project_id_s": "sometestproject-1111111",
"resource_labels_target_type_s": "",
@ -474,13 +464,12 @@
"SourceSystem": "RestAPI",
"MG": "",
"ManagementGroupName": "",
"TimeGenerated [UTC]": "6/17/2021, 9:20:01.775 AM",
"Computer": "",
"RawData": "",
"resource_labels_zone_name_s": "gcp-cloud",
"payload__type_s": "type.googleapis.com/google.cloud.audit.AuditLog",
"payload_authenticationInfo_principalEmail_s": "test@example.com",
"payload_requestMetadata_requestAttributes_time_t [UTC]": "6/17/2021, 9:16:03.884 AM",
"payload_requestMetadata_requestAttributes_time_t": "2021-06-17T09:15:33.00000Z",
"payload_serviceName_s": "dns.googleapis.com",
"payload_methodName_s": "dns.resourceRecordSets.list",
"payload_authorizationInfo_s": "[\n {\n \"permission\": \"dns.resourceRecordSets.list\",\n \"granted\": true,\n \"resourceAttributes\": {}\n }\n]",
@ -492,7 +481,7 @@
"log_name_s": "projects/sometestproject-1111111/logs/cloudaudit.googleapis.com%2Fdata_access",
"insert_id_s": "qxex6we32mms",
"severity_s": "INFO",
"timestamp_t [UTC]": "6/17/2021, 9:16:03.871 AM",
"timestamp_t": "2021-06-17T09:15:33.00000Z",
"resource_type_s": "dns_managed_zone",
"resource_labels_project_id_s": "sometestproject-1111111",
"resource_labels_target_type_s": "",
@ -521,13 +510,12 @@
"SourceSystem": "RestAPI",
"MG": "",
"ManagementGroupName": "",
"TimeGenerated [UTC]": "6/17/2021, 9:20:01.775 AM",
"Computer": "",
"RawData": "",
"resource_labels_zone_name_s": "",
"payload__type_s": "",
"payload_authenticationInfo_principalEmail_s": "",
"payload_requestMetadata_requestAttributes_time_t [UTC]": "",
"payload_requestMetadata_requestAttributes_time_t": "",
"payload_serviceName_s": "",
"payload_methodName_s": "",
"payload_authorizationInfo_s": "",
@ -539,7 +527,7 @@
"log_name_s": "projects/sometestproject-1111111/logs/dns.googleapis.com%2Fdns_queries",
"insert_id_s": "785cqudtf3k",
"severity_s": "INFO",
"timestamp_t [UTC]": "6/17/2021, 9:19:33.309 AM",
"timestamp_t": "2021-06-17T09:15:33.00000Z",
"resource_type_s": "dns_query",
"resource_labels_project_id_s": "sometestproject-1111111",
"resource_labels_target_type_s": "external",
@ -568,13 +556,12 @@
"SourceSystem": "RestAPI",
"MG": "",
"ManagementGroupName": "",
"TimeGenerated [UTC]": "6/17/2021, 9:20:01.775 AM",
"Computer": "",
"RawData": "",
"resource_labels_zone_name_s": "",
"payload__type_s": "",
"payload_authenticationInfo_principalEmail_s": "",
"payload_requestMetadata_requestAttributes_time_t [UTC]": "",
"payload_requestMetadata_requestAttributes_time_t": "",
"payload_serviceName_s": "",
"payload_methodName_s": "",
"payload_authorizationInfo_s": "",
@ -586,7 +573,7 @@
"log_name_s": "projects/sometestproject-1111111/logs/dns.googleapis.com%2Fdns_queries",
"insert_id_s": "mh5urue29nrp",
"severity_s": "INFO",
"timestamp_t [UTC]": "6/17/2021, 9:19:33.309 AM",
"timestamp_t": "2021-06-17T09:15:33.00000Z",
"resource_type_s": "dns_query",
"resource_labels_project_id_s": "sometestproject-1111111",
"resource_labels_target_type_s": "external",
@ -615,13 +602,12 @@
"SourceSystem": "RestAPI",
"MG": "",
"ManagementGroupName": "",
"TimeGenerated [UTC]": "6/17/2021, 9:20:01.775 AM",
"Computer": "",
"RawData": "",
"resource_labels_zone_name_s": "",
"payload__type_s": "",
"payload_authenticationInfo_principalEmail_s": "",
"payload_requestMetadata_requestAttributes_time_t [UTC]": "",
"payload_requestMetadata_requestAttributes_time_t": "",
"payload_serviceName_s": "",
"payload_methodName_s": "",
"payload_authorizationInfo_s": "",
@ -633,7 +619,7 @@
"log_name_s": "projects/sometestproject-1111111/logs/dns.googleapis.com%2Fdns_queries",
"insert_id_s": "1erzee4e1lyfp",
"severity_s": "INFO",
"timestamp_t [UTC]": "6/17/2021, 9:19:42.626 AM",
"timestamp_t": "2021-06-17T09:15:33.00000Z",
"resource_type_s": "dns_query",
"resource_labels_project_id_s": "sometestproject-1111111",
"resource_labels_target_type_s": "external",
@ -662,13 +648,12 @@
"SourceSystem": "RestAPI",
"MG": "",
"ManagementGroupName": "",
"TimeGenerated [UTC]": "6/17/2021, 9:20:01.775 AM",
"Computer": "",
"RawData": "",
"resource_labels_zone_name_s": "",
"payload__type_s": "",
"payload_authenticationInfo_principalEmail_s": "",
"payload_requestMetadata_requestAttributes_time_t [UTC]": "",
"payload_requestMetadata_requestAttributes_time_t": "",
"payload_serviceName_s": "",
"payload_methodName_s": "",
"payload_authorizationInfo_s": "",
@ -680,7 +665,7 @@
"log_name_s": "projects/sometestproject-1111111/logs/dns.googleapis.com%2Fdns_queries",
"insert_id_s": "2hxnf2e2c4mr",
"severity_s": "INFO",
"timestamp_t [UTC]": "6/17/2021, 9:19:42.626 AM",
"timestamp_t": "2021-06-17T09:15:33.00000Z",
"resource_type_s": "dns_query",
"resource_labels_project_id_s": "sometestproject-1111111",
"resource_labels_target_type_s": "external",