…
|
||
---|---|---|
.. | ||
deploy | ||
dev | ||
lib | ||
schemas | ||
ASIM parsers list.md | ||
ASimFullDeployment.json | ||
README.md |
README.md
Deploy ASIM
This template deploys all ASIM parsers. The Advanced Security Information Model (ASIM) enables you to use and create source-agnostic content, simplifying your analysis of the data in your Microsoft Sentinel workspace.
For more information, see Normalization and the Advanced Security Information Model (ASIM)
To deploy a single schema use the buttons below:
ASim Schema | Deploy | Deploy to Azure Gov |
---|---|---|
Audit Event | ||
Authentication | ||
Dhcp Event | ||
Dns | ||
File Event | ||
Network Session | ||
Process Event | ||
Registry Event | ||
UserManagement | ||
Web Session |