...
Data source | Description | API endpoint | Collector service name | Devo table | Available from release |
---|---|---|---|---|---|
Incidents | SOCRadar incidents |
| incidents |
| v1.0 |
Audit logs | SOCRadar audit events |
| audit_logs |
| v1.0 |
Threat feeds | SOCRadar threat feed entries |
| threat_feed | Lookups:
| v1.0 |
For more information on how the events are parsed, visit our page
Flattening preprocessing
Data source | Collector service | Optional |
---|---|---|
Incidents | incidents |
|
Audit logs | audit_logs |
|
Threat feeds | threat_feed |
|
...