История

Robert Jaakke f3dc77f112 [Chore] Changed name to ASimDisabledParsers plural		2021-11-25 10:37:56 +01:00
..
Watchlists	[Chore] Changed name to ASimDisabledParsers plural	2021-11-25 10:37:56 +01:00
ASimFullDeployment.json	Update ASimFullDeployment.json	2021-10-26 13:29:38 +03:00
README.md	Adding single schema deploy buttons (#3411 )	2021-11-09 19:33:50 +02:00

README.md

Deploy ASIM

This template deploys all ASIM parsers. The Advanced SIEM Information Model (ASIM) enables you to use and create source-agnostic content, simplifying your analysis of the data in your Microsoft Sentinel workspace.

For more information, see Normalization and the Advanced SIEM Information Model (ASIM)

To deploy a single schema use the buttons below:

ASim Schema	Deploy
Authentication
Dns
File Event
Network Session
Process Event
Registry