Azure-Sentinel/Sample Data/Cynerio_RawLogs.json

[
    {
      "alert_id": "c96a8b1d-7b40-401b-9601-ecdb5c3aa690",
      "asset_id": "32f187ef-7a14-4493-a739-3576f574de9b",
      "date": "2020-12-07 09:53:45.959862",
      "log_action": true,
      "alert_timestamp": 1644752295,
      "alert_data": {
        "id": "c96a8b1d-7b40-401b-9601-ecdb5c3aa690",
        "port": 22,
        "type": "Access Point",
        "title": "SSH Connection",
        "module": "IDS",
        "actions": ["log"],
        "details": "Browser: Chrome, Host: fireoscaptiveportal.com, IP: 54.204.135.149",
        "asset_id": "32f187ef-7a14-4493-a739-3576f574de9b",
        "asset_ip": "10.229.193.5",
        "protocol": "SSH",
        "severity": "Medium",
        "client_ip": "10.127.236.42",
        "server_ip": "10.229.193.5",
        "timestamp": 1644752295,
        "asset_name": "AP-STR-2774-2004",
        "asset_type": "Access Point",
        "asset_model": "Aironet 2700",
        "related_risks": ["open_port_22"],
        "asset_type_code": "ACCESS_POINT"
      }
    },
    {
      "alert_id": "550ee3e5-22c8-434f-beb7-5b533525ae7e",
      "asset_id": "a313a4e4-5022-4c34-aa87-a6ca2aa0d50f",
      "date": "2020-12-07 09:56:47.594843",
      "log_action": true,
      "alert_timestamp": 1644852347,
      "alert_data": {
        "id": "550ee3e5-22c8-434f-beb7-5b533525ae7e",
        "port": 22,
        "type": "network_alert",
        "title": "Exploitation Attempt",
        "module": "Risk",
        "actions": ["log"],
        "details": "Browser: Chrome, Host: redirector.gvt1.com, IP: 172.217.6.110",
        "asset_id": "a313a4e4-5022-4c34-aa87-a6ca2aa0d50f",
        "asset_ip": "10.229.193.6",
        "protocol": "SSH",
        "severity": "Critical",
        "client_ip": "10.127.236.42",
        "server_ip": "10.229.193.6",
        "timestamp": 1644852347,
        "asset_name": "GEService",
        "asset_type": "PACS Server",
        "asset_model": "Centricity PACS",
        "related_risks": ["open_port_22"],
        "asset_type_code": "PACS"
      }
    },
    {
      "customer_id": "9119",
      "alert_id": "2a819222-57db-408e-8863-e53ee0051cc6",
      "asset_id": "37e29d7c-fb04-4b29-ab6a-c145ce24e783",
      "date": "2020-12-07 09:56:56.967627",
      "log_action": true,
      "alert_timestamp": 1607333708,
      "alert_data": {
        "id": "2a819222-57db-408e-8863-e53ee0051cc6",
        "port": 22,
        "type": "network_alert",
        "title": "Policy Violation",
        "module": "Virtual Segmentation",
        "actions": ["log"],
        "details": "Source IP 10.127.236.42, Port: 22",
        "asset_id": "37e29d7c-fb04-4b29-ab6a-c145ce24e783",
        "asset_ip": "10.229.193.7",
        "protocol": "SSH",
        "severity": "Low",
        "client_ip": "10.127.236.42",
        "server_ip": "10.229.193.7",
        "timestamp": 1607333708.142746,
        "asset_name": "GEService",
        "asset_type": "PACS Server",
        "asset_model": "Centricity PACS",
        "customer_id": "9119",
        "related_risks": ["open_port_22"],
        "asset_type_code": "PACS"
      }
    }
]