...
For more information, read more About Devo tags.
Table structure
These are the fields displayed in these tables:
Anchor | ||||
---|---|---|---|---|
|
Field | Type | Field transformation | Source field name | Extra fields | ||
---|---|---|---|---|---|---|
eventdate |
|
|
| |||
machine |
|
|
| |||
subtype |
|
| vtype | |||
IV_ALERT_ID |
|
|
| |||
IV_ALERT_TYPE |
|
|
| |||
IV_ATTACK_TIME |
|
| IV_ATTACK_TIME_str | |||
IV_ATTACK_NAME |
|
|
| |||
IV_ATTACK_ID |
|
|
| |||
IV_ATTACK_SEVERITY |
|
|
| |||
IV_ATTACK_SIGNATURE |
|
|
| |||
IV_ATTACK_CONFIDENCE |
|
|
| |||
IV_ADMIN_DOMAIN |
|
|
| |||
IV_SENSOR_NAME |
|
|
| |||
IV_INTERFACE |
|
|
| |||
IV_SOURCE_IP |
|
|
| |||
IV_SOURCE_PORT |
|
|
| |||
IV_DESTINATION_IP |
|
|
| |||
IV_DESTINATION_PORT |
|
|
| |||
IV_CATEGORY |
|
|
| |||
IV_SUB_CATEGORY |
|
|
| |||
IV_DIRECTION |
|
|
| |||
IV_RESULT_STATUS |
|
|
| |||
IV_DETECTION_MECHANISM |
|
|
| |||
IV_APPLICATION_PROTOCOL |
|
|
| |||
IV_NETWORK_PROTOCOL |
|
|
| |||
message |
|
|
| |||
hostchain |
|
|
| ✓ | ||
tag |
|
|
| ✓ | ||
rawMessage |
|
|
| ✓ |
Anchor | ||||
---|---|---|---|---|
|
Field | Type | Extra fields |
---|---|---|
eventdate |
|
|
machine |
|
|
IV_AUDIT_ACTION |
|
|
IV_AUDIT_RESULT |
|
|
IV_AUDIT_TIME |
|
|
IV_AUDIT_MESSAGE |
|
|
IV_AUDIT_USER |
|
|
IV_AUDIT_CATEGORY |
|
|
IV_AUDIT_DOMAIN |
|
|
IV_AUDIT_DETAIL_COMMENT |
|
|
IV_AUDIT_DETAIL_DELTA |
|
|
hostchain |
| ✓ |
tag |
| ✓ |
rawMessage |
| ✓ |
Anchor | ||||
---|---|---|---|---|
|
Field | Type | Field transformation | Source field name | Extra fields | ||
---|---|---|---|---|---|---|
eventdate |
|
|
| |||
machine |
|
|
| |||
IV_ALERT_ID |
|
|
| |||
IV_ALERT_TYPE |
|
|
| |||
IV_ATTACK_TIME |
|
| IV_ATTACK_TIME_str | |||
IV_ATTACK_NAME |
|
|
| |||
IV_ATTACK_ID |
|
|
| |||
IV_ATTACK_SEVERITY |
|
|
| |||
IV_ATTACK_SIGNATURE |
|
|
| |||
IV_ATTACK_CONFIDENCE |
|
|
| |||
IV_ADMIN_DOMAIN |
|
|
| |||
IV_SENSOR_NAME |
|
|
| |||
IV_INTERFACE |
|
|
| |||
IV_SOURCE_IP |
|
|
| |||
IV_SOURCE_PORT |
|
|
| |||
IV_DESTINATION_IP |
|
|
| |||
IV_DESTINATION_PORT |
|
|
| |||
IV_CATEGORY |
|
|
| |||
IV_SUB_CATEGORY |
|
|
| |||
IV_DIRECTION |
|
|
| |||
IV_RESULT_STATUS |
|
|
| |||
IV_DETECTION_MECHANISM |
|
|
| |||
IV_APPLICATION_PROTOCOL |
|
|
| |||
IV_NETWORK_PROTOCOL |
|
|
| |||
message |
|
|
| |||
hostchain |
|
|
| ✓ | ||
tag |
|
|
| ✓ | ||
rawMessage |
|
|
| ✓ |
Anchor | ||||
---|---|---|---|---|
|
Field | Type | Extra fields |
---|---|---|
eventdate |
|
|
machine |
|
|
IV_ACK_INFORMATION |
|
|
IV_ADDITIONAL_TEXT |
|
|
IV_ADMIN_DOMAIN |
|
|
IV_DESCRIPTION |
|
|
IV_DEVICE_NAME |
|
|
IV_FAULT_COMPONENT |
|
|
IV_FAULT_LEVEL |
|
|
IV_FAULT_NAME |
|
|
IV_FAULT_SOURCE |
|
|
IV_FAULT_TIME |
|
|
IV_FAULT_TYPE |
|
|
IV_MEMBER_DEVICE_NAME |
|
|
IV_OWNER_ID |
|
|
IV_SEVERITY |
|
|
hostchain |
| ✓ |
tag |
| ✓ |
rawMessage |
| ✓ |