Azure-Sentinel/Sample Data/Talon_Insights_sample.csv

1	TenantId	SourceSystem	MG	ManagementGroupName	TimeGenerated [UTC]	Computer	RawData	eventDetails_loginUsername_s	eventDetails_matchedURL_s	eventDetails_categories_s	eventDetails_reasons_s	eventDetails_failedAttempts_d	eventDetails_engine_s	eventDetails_activity_s	eventDetails_printerName_s	eventDetails_fromURL_s	eventDetails_installSource_s	eventDetails_id_s	eventDetails_version_s	eventDetails_path_s	eventDetails_name_s	eventDetails_type_s	id_s	eventCategory_s	eventType_s	url_s	severity_s	action_s	userEmail_s	deviceHostname_s	IPAddress	browserVersion_s	userAgent_s	osPlatform_s	osVersion_s	mitreTechniques_s	policyRule_s	eventDetails_protocol_s	eventDetails_method_s	type_s	time_s	description_s	Type	_ResourceId
2	fb0f0d7f-55fd-4e35-8654-b288b12a33ad	RestAPI			2/27/2023, 6:11:08.483 PM																		0EV01GTA14F23F9GF4TDZHWW57S8P	access	websiteAccess	zoom.us/****	none	allowed	ofer@talon-sec.com	DESKTOP-HALD2GB	31.154.78.210	110.178.2419.2	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 Safari/537.36	Windows	10.0.1265.22621	[ "T1102" ]	https://test.talon-sec.com/policy/rules?search=0RL01GPX5PDB87CG79H34CF0HQHVA	https	GET	event			Talon_CL
3	fb0f0d7f-55fd-4e35-8654-b288b12a33ad	RestAPI			2/27/2023, 3:51:25.931 PM																		0EV01GT9S4MZB4YD4MXV2FB5BS8M2	access	websiteAccess	zoom.us/****	none	allowed	oded.a@talon-sec.com	DESKTOP-Q142V1K	31.154.78.210	110.178.2419.2	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 Safari/537.36	Windows	10.0.2604.19044	[ "T1102" ]	https://test.talon-sec.com/policy/rules?search=0RL01GPX5PDB87CG79H34CF0HQHVA	https	GET	event			Talon_CL
4	fb0f0d7f-55fd-4e35-8654-b288b12a33ad	RestAPI			2/27/2023, 7:39:13.656 PM																		0EV01GTA65RBRJ9SYX65BBXVRQSRZ	access	websiteAccess	zoom.us/****	none	allowed	peyton.p@talon-sec.com	Peytons-MacBook-Pro.local	108.174.97.59	110.178.2419.2	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 Safari/537.36	macOS	13.0.0	[ "T1102" ]	https://test.talon-sec.com/policy/rules?search=0RL01G9FY5JR919KDGD0DB10FMD4F	https	GET	event			Talon_CL
5	fb0f0d7f-55fd-4e35-8654-b288b12a33ad	RestAPI			2/27/2023, 3:01:47.201 PM																		0EV01GT9P9R21DSW37JN2KA91E48S	access	websiteAccess	zoom.us/****	none	allowed	oded.a@talon-sec.com	DESKTOP-Q142V1K	31.154.78.210	110.178.2419.2	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 Safari/537.36	Windows	10.0.2604.19044	[ "T1102" ]	https://test.talon-sec.com/policy/rules?search=0RL01GPX5PDB87CG79H34CF0HQHVA	https	GET	event			Talon_CL
6	fb0f0d7f-55fd-4e35-8654-b288b12a33ad	RestAPI			2/27/2023, 7:00:19.915 AM																		0EV01GT8TR5TB6WGQ16Y9M17MRYY7	access	websiteAccess	zoom.us/****	none	allowed	avia.t@talon-sec.com	h-MacBook-Air-sl-Avia.local	176.231.187.13	110.178.2419.2	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 Safari/537.36	macOS	13.2.1	[ "T1102" ]	https://test.talon-sec.com/policy/rules?search=0RL01GN4YRENW65T2V6K06S8FRVBX	https	GET	event			Talon_CL
7	fb0f0d7f-55fd-4e35-8654-b288b12a33ad	RestAPI			2/27/2023, 3:51:37.862 PM																		0EV01GT9S50M6XBHWG8C4RS6E3BND	access	websiteAccess	zoom.us/****	none	allowed	oded.a@talon-sec.com	DESKTOP-Q142V1K	31.154.78.210	110.178.2419.2	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 Safari/537.36	Windows	10.0.2604.19044	[ "T1102" ]	https://test.talon-sec.com/policy/rules?search=0RL01GPX5PDB87CG79H34CF0HQHVA	https	GET	event			Talon_CL
8	fb0f0d7f-55fd-4e35-8654-b288b12a33ad	RestAPI			2/27/2023, 7:34:34.856 PM																		0EV01GTA5X8380AYAMZX4H4QW87JF	access	websiteAccess	zoom.us/****	none	allowed	peyton.p@talon-sec.com	Peytons-MacBook-Pro.local	108.174.97.59	110.178.2419.2	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 Safari/537.36	macOS	13.0.0	[ "T1102" ]	https://test.talon-sec.com/policy/rules?search=0RL01G9FY5JR919KDGD0DB10FMD4F	https	GET	event			Talon_CL
9	fb0f0d7f-55fd-4e35-8654-b288b12a33ad	RestAPI			2/27/2023, 3:01:32.501 PM																		0EV01GT9P99PN4EHYN1V6BGPHT8CQ	access	websiteAccess	zoom.us/****	none	allowed	oded.a@talon-sec.com	DESKTOP-Q142V1K	31.154.78.210	110.178.2419.2	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 Safari/537.36	Windows	10.0.2604.19044	[ "T1102" ]	https://test.talon-sec.com/policy/rules?search=0RL01GPX5PDB87CG79H34CF0HQHVA	https	GET	event			Talon_CL
10	fb0f0d7f-55fd-4e35-8654-b288b12a33ad	RestAPI			2/27/2023, 7:05:21.921 AM																		0EV01GT8V1CR1MA04CA5FZXSMSTC9	access	websiteAccess	zoom.us/****	none	allowed	avia.t@talon-sec.com	h-MacBook-Air-sl-Avia.local	176.231.187.13	110.178.2419.2	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 Safari/537.36	macOS	13.2.1	[ "T1102" ]	https://test.talon-sec.com/policy/rules?search=0RL01GN4YRENW65T2V6K06S8FRVBX	https	GET	event			Talon_CL
11	fb0f0d7f-55fd-4e35-8654-b288b12a33ad	RestAPI			2/27/2023, 7:40:02.692 PM																		0EV01GTA67884YG93D546AFE550Q7	access	websiteAccess	zoom.us/****	none	allowed	peyton.p@talon-sec.com	Peytons-MacBook-Pro.local	108.174.97.59	110.178.2419.2	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 Safari/537.36	macOS	13.0.0	[ "T1102" ]	https://test.talon-sec.com/policy/rules?search=0RL01G9FY5JR919KDGD0DB10FMD4F	https	GET	event			Talon_CL