| .. |
|
SonicWallFirewall
|
Moved Network and Web Session sample logs.
|
2024-04-02 08:50:40 -07:00 |
|
Vectra XDR
|
Rebranding the app, Added new data connectors and workbooks
|
2023-07-06 16:32:17 +05:30 |
|
Barracuda_WAF_ASimAuditEvent_IngestedLogs.csv.csv
|
ASIM Audit schema parser with its sample and test data for Barracuda WAF.
|
2023-06-22 13:34:15 +05:30 |
|
Barracuda_WAF_ASimAuthentication_IngestedLogs.csv
|
ASIM Authentication schema parser with its sample and test data for Barracuda WAF.
|
2023-06-22 13:55:53 +05:30 |
|
Barracuda_WAF_ASimNetworkSession_IngestedLogs.csv
|
ASIM Network Session schema parser with its sample and test data for Barracuda WAF.
|
2023-06-22 14:04:53 +05:30 |
|
Barracuda_WAF_ASimWebSession_IngestedLogs.csv
|
Fixed changes of 2nd review.
|
2023-07-06 19:27:31 +05:30 |
|
CarbonBlackAuditLogs_CL_Schema.csv
|
ASIM Authentication Event schema parser with its sample and test data for VMware Carbon Black Cloud
|
2023-08-21 12:03:31 +05:30 |
|
CarbonBlackEvents_CL_Schema.csv
|
Fixed the suggested review1 changes
|
2023-10-12 16:25:22 +05:30 |
|
CarbonBlackNotifications_CL_Schema.csv
|
Fixed review1 suggested changes.
|
2023-10-06 18:47:26 +05:30 |
|
Cisco_ASA_Authentication_IngestedLogs.csv
|
Add-Authentication-Cisco-ASA
|
2023-07-06 23:14:27 +02:00 |
|
Cisco_ASA_Authentication_SchemaTest.csv
|
Add-Authentication-Cisco-ASA
|
2023-07-06 23:14:27 +02:00 |
|
Cisco_Firepower_ASimNetworkSession_IngestedLogs.csv
|
Updated parser with the live data and the code changes due to the live data
|
2023-09-06 17:59:14 +05:30 |
|
Cisco_Firepower_ASimNetworkSession_RawLogs.txt
|
Fixed the suggested review1 changes.
|
2023-10-13 17:39:09 +05:30 |
|
Cisco_Firepower_ASimWebSession_IngestedLogs.csv
|
Fixed the suggested review1 changes.
|
2023-10-13 17:35:59 +05:30 |
|
Cisco_Firepower_ASimWebSession_RawLogs.txt
|
Fixed the suggested review1 changes.
|
2023-10-13 17:35:59 +05:30 |
|
Cisco_Meraki_ASimAuditEvent_IngestedLogs.csv
|
ASIM Audit schema parser with its sample and test data for Cisco Meraki.
|
2023-06-16 23:44:30 +05:30 |
|
Cisco_Meraki_ASimAuthentication_IngestedLogs.csv
|
Authentication parser with its sample and test data for Cisco Meraki.
|
2023-06-15 19:41:06 +05:30 |
|
Cisco_Meraki_ASimNetworkSession_IngestedLogs.csv
|
ASIM NetworkSession schema parser with its sample and test data for Cisco Meraki.
|
2023-06-22 11:03:43 +05:30 |
|
Cisco_Meraki_ASimWebSession_IngestedLogs.csv
|
ASIM WebSession schema parser with its sample and test data for Cisco Meraki.
|
2023-06-15 19:51:26 +05:30 |
|
Citrix_NetScaler_ASimWebSession_IngestedLogs.csv
|
ASIM WebSession Event schema parser with its sample and test data for CitrixNetscalerWAF
|
2023-08-31 19:09:07 +05:30 |
|
CommonSecurityLog_NetworkSession.csv
|
Added sample data
|
2024-01-02 08:13:35 -07:00 |
|
CommonSecurityLog_Schema.csv
|
merge master into PaloAltoCDLAuthentication
|
2023-12-11 18:46:06 +05:30 |
|
CrowdStrike_FalconHost_ASimAuditEvent_IngestedLogs.csv
|
Updated EventProduct name as suggested and renamed files accordingly
|
2023-11-28 15:34:22 +05:30 |
|
CrowdStrike_FalconHost_ASimAuditEvent_RawLogs.txt
|
Updated EventProduct name as suggested and renamed files accordingly
|
2023-11-28 15:34:22 +05:30 |
|
CrowdStrike_FalconHost_ASimNetworkSession_IngestedLogs.csv
|
Resolved merge conflicts
|
2023-12-05 12:51:25 +05:30 |
|
CrowdStrike_FalconHost_ASimNetworkSession_RawLogs.txt
|
Resolved merge conflicts
|
2023-12-05 12:51:25 +05:30 |
|
CrowdStrike_Falcon_ASimAuthentication_IngestedLogs.csv
|
Fixed review2 changes.
|
2023-11-03 18:32:23 +05:30 |
|
CrowdStrike_Falcon_ASimAuthentication_RawLogs.txt
|
Fixed review2 changes.
|
2023-11-03 18:32:23 +05:30 |
|
F5_ASM_ASimWebSession_IngestedLogs.csv
|
ASIM Web Session schema parser with its sample and test data for F5 ASM(Aaplication Security Manager)
|
2023-08-22 12:23:42 +05:30 |
|
F5_ASM_ASimWebSession_RawLogs.txt
|
Fixed the suggested review1 changes
|
2023-10-12 19:38:14 +05:30 |
|
Fortinet_FortiGate_Dns_IngestedLogs.csv
|
Add-Dns-FortinetFortiGate
|
2023-11-09 22:22:25 +01:00 |
|
Fortinet_FortiGate_Dns_Schema.csv
|
Add-Dns-FortinetFortiGate
|
2023-11-09 22:22:25 +01:00 |
|
Infoblox_BloxOne_AuditEvent_IngestedLogs.csv
|
Added validation for object and ObjectType, also added new tester files and changed sample logs
|
2024-09-13 17:23:49 +05:30 |
|
Infoblox_BloxOne_DhcpEvent_IngestedLogs.csv
|
Added changes in Parser and Sample logs
|
2024-09-12 18:01:39 +05:30 |
|
Infoblox_BloxOne_Dns_IngestedLogs.csv
|
Added changes in Parser and Sample logs
|
2024-09-12 18:01:39 +05:30 |
|
Linux_Authpriv_UserManagement_IngestedLogs.csv
|
Add-UserManagement-Linux
|
2023-08-06 13:30:12 +02:00 |
|
Microsoft_DNS Server_Dns_IntestedLogs.csv
|
Parsers/ASimDns/Parsers/*: addressing further review findings
|
2023-08-25 13:36:40 +02:00 |
|
Microsoft_Windows_AuditEvent_Event_IngestedLogs.csv
|
Fix Sample Data and Tests
|
2023-06-26 21:49:36 +02:00 |
|
Microsoft_Windows_AuditEvent_Event_Schema.csv
|
Fix-Tests
|
2023-06-28 21:48:11 +02:00 |
|
Microsoft_Windows_AuditEvent_SecurityEvent_IngestedLogs.csv
|
Fix Sample Data and Tests
|
2023-06-26 21:49:36 +02:00 |
|
Microsoft_Windows_AuditEvent_SecurityEvent_Schema.csv
|
Fix-Tests
|
2023-06-28 21:48:11 +02:00 |
|
Microsoft_Windows_AuditEvent_WindowsEvent_IngestedLogs_.csv
|
Fix Sample Data and Tests
|
2023-06-26 21:49:36 +02:00 |
|
Microsoft_Windows_AuditEvent_WindowsEvent_Schema.csv
|
Fix-Tests
|
2023-06-28 21:48:11 +02:00 |
|
Microsoft_Windows_UserManagement_SecurityEvent_IngestedLogs.csv
|
Add-UserManagement-Parser
|
2023-07-18 23:21:36 +02:00 |
|
Microsoft_Windows_UserManagement_SecurityEvent_Schema.csv
|
Add-UserManagement-Parser
|
2023-07-18 23:21:36 +02:00 |
|
Microsoft_Windows_UserManagement_WindowsEvent_IngestedLogs.csv
|
Add-UserManagement-Parser
|
2023-07-18 23:21:36 +02:00 |
|
Microsoft_Windows_UserManagement_WindowsEvent_Schema.csv
|
Add-UserManagement-Parser
|
2023-07-18 23:21:36 +02:00 |
|
NXLog_DNS_Server_CL_schema.csv
|
Parsers/ASimDns/Parsers/*: addressing further review findings
|
2023-08-25 13:36:40 +02:00 |
|
PaloAlto_CortexDataLake_ASimAuthentication_IngestedLogs.csv
|
ASIM Authentication schema parser with its sample and test data for Palo Alto Cortex Data Lake.
|
2023-09-29 19:34:37 +05:30 |
|
PaloAlto_CortexDataLake_ASimAuthentication_RawLogs.txt
|
ASIM Authentication schema parser with its sample and test data for Palo Alto Cortex Data Lake.
|
2023-09-29 19:34:37 +05:30 |
|
PaloAlto_CortexDataLake_ASimNetworkSession_IngestedLogs.csv
|
ASIM NetworkSession schema parser with its sample data and tester files for Palo Alto Cortex Data Lake
|
2023-09-29 20:35:49 +05:30 |
|
PaloAlto_CortexDataLake_ASimNetworkSession_RawLogs.txt
|
ASIM NetworkSession schema parser with its sample data and tester files for Palo Alto Cortex Data Lake
|
2023-09-29 20:35:49 +05:30 |
|
PaloAlto_CortexDataLake_ASimWebSession_IngestedLogs.csv
|
ASIM WebSession schema parser with its sample data and tester files for Palo Alto Cortex Data Lake
|
2023-09-29 20:52:22 +05:30 |
|
PaloAlto_CortexDataLake_ASimWebSession_RawLogs.txt
|
ASIM WebSession schema parser with its sample data and tester files for Palo Alto Cortex Data Lake
|
2023-09-29 20:52:22 +05:30 |
|
SentinelOne_ASimAuditEvent_IngestedLogs.csv
|
Fixed the suggested changes to include some users 2FA activity to user and implement inner join instead of lookup.
|
2023-10-06 19:00:58 +05:30 |
|
SentinelOne_ASimAuditEvent_RawLogs.json
|
Fixed the suggested changes to include some users 2FA activity to user and implement inner join instead of lookup.
|
2023-10-06 19:00:58 +05:30 |
|
SentinelOne_ASimAuthentication_IngestedLogs.csv
|
Updated sample data which contains all possible values related to ThreatCofidence.
|
2023-09-21 15:51:12 +05:30 |
|
SentinelOne_ASimAuthentication_RawLogs.json
|
Updated sample data which contains all possible values related to ThreatCofidence.
|
2023-09-21 15:51:12 +05:30 |
|
SentinelOne_ASimDns_IngestedLogs.csv
|
ASIM DNS schema parser with its sample and test data for SentinelOne.
|
2023-07-30 12:06:13 +05:30 |
|
SentinelOne_ASimDns_RawLogs.json
|
Fixed the suggested review1 changes and added RAW log files for sentinel one.
|
2023-08-24 22:38:06 +05:30 |
|
SentinelOne_ASimFileEvent_IngestedLogs.csv
|
Fixed the suggested review1 changes and added RAW log files for sentinel one.
|
2023-08-24 23:01:27 +05:30 |
|
SentinelOne_ASimFileEvent_RawLogs.json
|
Fixed the suggested review1 changes and added RAW log files for sentinel one.
|
2023-08-23 10:58:52 +05:30 |
|
SentinelOne_ASimNetworkSession_IngestedLogs.csv
|
ASIM Network Session schema parser with its sample and test data for SentinelOne.
|
2023-07-30 12:33:33 +05:30 |
|
SentinelOne_ASimNetworkSession_RawLogs.json
|
Fixed the suggested review1 changes and added RAW log files for sentinel one.
|
2023-08-24 22:42:45 +05:30 |
|
SentinelOne_ASimProcessEvent_IngestedLogs.csv
|
Updated parser by adding inspection fields, added EventProduct and Event Vender in tester file and updated sample data as per change.
|
2023-09-18 20:07:32 +05:30 |
|
SentinelOne_ASimProcessEvent_RawLogs.json
|
Updated parser by adding inspection fields, added EventProduct and Event Vender in tester file and updated sample data as per change.
|
2023-09-18 20:07:32 +05:30 |
|
SentinelOne_ASimRegistryEvent_IngestedLogs.csv
|
Fixed the suggested review1 changes and added RAW log files for sentinel one.
|
2023-08-23 11:05:15 +05:30 |
|
SentinelOne_ASimRegistryEvent_RawLogs.json
|
Fixed the suggested review1 changes and added RAW log files for sentinel one.
|
2023-08-23 11:05:15 +05:30 |
|
SentinelOne_ASimUserManagement_IngestedLogs.csv
|
Added few more activities related to Two Factor authentication as User Management suggested by reviewer
|
2023-10-13 16:39:37 +05:30 |
|
SentinelOne_ASimUserManagement_RawLogs.json
|
Added few more activities related to Two Factor authentication as User Management suggested by reviewer
|
2023-10-13 16:39:37 +05:30 |
|
SentinelOne_CL_Schema.csv
|
Updated PR by implementing previously suggested some general changes as per other PR.
|
2023-08-29 12:54:26 +05:30 |
|
SonicWall_Firewall_NetworkSession_IngestedLogs.csv
|
Moved Network and Web Session sample logs.
|
2024-04-02 08:50:40 -07:00 |
|
SonicWall_Firewall_WebSession_IngestedLogs.csv
|
Moved Network and Web Session sample logs.
|
2024-04-02 08:50:40 -07:00 |
|
SonicWall_SonicOS_NetworkSession_IngestedLogs.csv
|
Added sample data
|
2024-01-02 08:13:35 -07:00 |
|
TrendMicroVisionOne_ASimProcessEvent_IngestedLogs.csv
|
Updated and added raw logs.
|
2023-09-21 15:43:52 +05:30 |
|
TrendMicroVisionOne_ASimProcessEvent_RawLogs.json
|
Updated and added raw logs.
|
2023-09-21 15:43:52 +05:30 |
|
TrendMicroVisionOne_ASimRegistryEvent_IngestedLogs.csv
|
Updated and added raw logs.
|
2023-09-21 15:45:57 +05:30 |
|
TrendMicroVisionOne_ASimRegistryEvent_RawLogs.json
|
Updated and added raw logs.
|
2023-09-21 15:45:57 +05:30 |
|
TrendMicro_XDR_OAT_CL_Schema.csv
|
Fixed suggested review2 changes.
|
2023-10-16 16:26:40 +05:30 |
|
VMwareCarbonBlackCloud_ASimAuditEvent_IngestedLogs.csv
|
Resolved Sampledata validation error by replacing email with sanitized@sanitized.com.
|
2023-08-29 13:52:48 +05:30 |
|
VMwareCarbonBlackCloud_ASimAuditEvent_RawLogs.json
|
Done suggested changes for review1.
|
2023-10-10 22:20:12 +05:30 |
|
VMwareCarbonBlackCloud_ASimNetworkSession_IngestedLogs.csv
|
ASIM Network Session Event schema parser with its sample and test data for VMware Carbon Black Cloud
|
2023-08-11 18:55:06 +05:30 |
|
VMwareCarbonBlackCloud_vimFileEvent_IngestedLogs.csv
|
ASIM File Event schema parser with its sample and test data for VMware Carbon Black Cloud
|
2023-08-21 11:02:14 +05:30 |
|
VMwareCarbonBlackCloud_vimFileEvent_RawLogs.json
|
Fixed the suggested review1 changes
|
2023-10-12 18:58:53 +05:30 |
|
VMwareCarbonBlackCloud_vimRegistryEvent_IngestedLogs.csv
|
ASIM Registry Event schema parser with its sample and test data for VMware Carbon Black Cloud
|
2023-08-11 19:02:08 +05:30 |
|
VMware_CarbonBlackCloud_ASimAuthentication_IngestedLogs.csv
|
Fixed the suggested review1 changes
|
2023-10-12 18:34:50 +05:30 |
|
VMware_CarbonBlackCloud_ASimAuthentication_RawLogs.json
|
Fixed the suggested review1 changes
|
2023-10-12 18:34:50 +05:30 |
|
VMware_CarbonBlackCloud_ASimNetworkSessionThreat_IngestedLogs.csv
|
Fixed Sampledata validation error by replacing email with sanitized@sanitized.com
|
2023-10-09 10:39:51 +05:30 |
|
VMware_CarbonBlackCloud_ASimNetworkSessionThreat_RawLogs.json
|
Fixed the validation error of mail id sanatization related.
|
2023-10-09 12:36:32 +05:30 |
|
VMware_CarbonBlackCloud_ASimNetworkSession_IngestedLogs.csv
|
Fixed review1 suggested changes.
|
2023-10-06 18:13:09 +05:30 |
|
VMware_CarbonBlackCloud_ASimNetworkSession_RawLogs.json
|
Updated raw logs for device_id as string values.
|
2023-10-09 12:14:47 +05:30 |
|
VMware_CarbonBlackCloud_ASimProcessCreateThreat_IngestedLogs.csv
|
Fixed the suggeated review2 changes.
|
2023-11-03 15:52:33 +05:30 |
|
VMware_CarbonBlackCloud_ASimProcessCreateThreat_RawLogs.json
|
Updated raw logs for device_id as string values and fixed the Kql validation.
|
2023-10-09 12:34:56 +05:30 |
|
VMware_CarbonBlackCloud_ASimProcessCreate_IngestedLogs.csv
|
Fixed review1 suggested changes.
|
2023-10-06 18:47:26 +05:30 |
|
VMware_CarbonBlackCloud_ASimProcessCreate_RawLogs.json
|
Updated raw logs for device_id as string values and fixed the Kql validation.
|
2023-10-09 12:34:56 +05:30 |
|
VMware_CarbonBlackCloud_ASimProcessTerminate_IngestedLogs.csv
|
ASIM Process Event schema parser with its sample and test data for VMware Carbon Black Cloud
|
2023-08-11 19:23:59 +05:30 |
|
VMware_CarbonBlackCloud_ASimProcessTerminate_RawLogs.json
|
Updated raw logs for device_id as string values and fixed the Kql validation.
|
2023-10-09 12:34:56 +05:30 |
|
VMware_CarbonBlackCloud_ASim_RegistryEvent_RawLogs.json
|
Fixed the suggested review1 changes
|
2023-10-12 16:25:22 +05:30 |
|
asim_cisco_ise_auditevent.csv
|
cisco ise auditevent schema parser
|
2023-06-29 18:19:07 +03:00 |
|
asim_cisco_ise_network.csv
|
fixes to optimize performance; add sample data
|
2023-06-30 18:37:48 +03:00 |
|
asim_cisco_ise_user_management.csv
|
sample data; parser optimization fixes
|
2023-07-10 10:56:02 +03:00 |
|
barracuda_CL_Schema.csv
|
ASIM Web Session schema parser with its sample and test data for Barracuda WAF.
|
2023-06-22 14:09:51 +05:30 |
|
cisco_ise_asim_auth.csv
|
fixes
|
2023-07-06 12:41:35 +03:00 |
|
meraki_CL_Schema.csv
|
ASIM NetworkSession schema parser with its sample and test data for Cisco Meraki.
|
2023-06-22 11:03:43 +05:30 |
|
readme.md
|
ASIM parser development guideline (#7673)
|
2023-04-05 08:42:26 -07:00 |
