Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Table of Contents
maxLevel2
typeflat

...

Valid tags and data tables

The full tag must have 4 levels. The first two are fixed asendpoint.bitdefender. The third level identifies the type of events sent, and the fourth level indicates the event subtype. 

These are the valid tags and corresponding data tables that will receive the parsers' data:

Product / Service

Tags

Data tables

Bitdefender

endpoint.bitdefender.agent

endpoint.bitdefender.agent

endpoint.bitdefender.agent.active_host

endpoint.bitdefender.agent.active_host

endpoint.bitdefender.agent.alert

endpoint.bitdefender.agent.alert

endpoint.bitdefender.agent.connection_connect

endpoint.bitdefender.agent.connection_connect

endpoint.bitdefender.agent.ctc_raw_process_create

endpoint.bitdefender.agent.ctc_raw_process_create

endpoint.bitdefender.detection

endpoint.bitdefender.detection

endpoint.bitdefender.agent.external_notification_on_process

endpoint.bitdefender.agent.external_notification_on_process

endpoint.bitdefender.agent.file_create

endpoint.bitdefender.agent.file_create

endpoint.bitdefender.agent.file_delete

endpoint.bitdefender.agent.file_delete

endpoint.bitdefender.modify_value

endpoint.bitdefender.modify_value

endpoint.bitdefender.agent.file_modify

endpoint.bitdefender.agent.file_modify

endpoint.bitdefender.agent.file_move

endpoint.bitdefender.agent.file_move

endpoint.bitdefender.agent.file_read

endpoint.bitdefender.agent.file_read

endpoint.bitdefender.agent.filescan_detection

endpoint.bitdefender.agent.filescan_detection

endpoint.bitdefender.agent.generic_logging

endpoint.bitdefender.agent.generic_logging

endpoint.bitdefender.agent.interface_added

endpoint.bitdefender.agent.interface_added

endpoint.bitdefender.agent.interface_change

endpoint.bitdefender.agent.interface_change

endpoint.bitdefender.agent.log_on

endpoint.bitdefender.agent.log_on

endpoint.bitdefender.agent.log_out

endpoint.bitdefender.agent.log_out

endpoint.bitdefender.agent.logon_failed

endpoint.bitdefender.agent.logon_failed

endpoint.bitdefender.agent.network_connection

endpoint.bitdefender.agent.network_connection

endpoint.bitdefender.agent.network_interfaces

endpoint.bitdefender.agent.network_interfaces

endpoint.bitdefender.agent.process_create

endpoint.bitdefender.agent.process_create

endpoint.bitdefender.agent.process_create_execve

endpoint.bitdefender.agent.process_create_execve

endpoint.bitdefender.agent.process_create_fork

endpoint.bitdefender.agent.process_create_fork

endpoint.bitdefender.agent.process_signal

endpoint.bitdefender.agent.process_signal

endpoint.bitdefender.agent.rca_insight

endpoint.bitdefender.agent.rca_insight

endpoint.bitdefender.agent.rca_insight_event

endpoint.bitdefender.agent.rca_insight_event

endpoint.bitdefender.agent.reg_delete_key

endpoint.bitdefender.agent.reg_delete_key

endpoint.bitdefender.agent.reg_delete_value

endpoint.bitdefender.agent.reg_delete_value

endpoint.bitdefender.agent.reg_modify_value

endpoint.bitdefender.agent.reg_modify_value

endpoint.bitdefender.agent.scheduled_task_create

endpoint.bitdefender.agent.scheduled_task_create

endpoint.bitdefender.agent.service_added

endpoint.bitdefender.agent.service_added

endpoint.bitdefender.agent.terminate_process

endpoint.bitdefender.agent.terminate_process

endpoint.bitdefender.agent.user_account_settings_change

endpoint.bitdefender.agent.user_account_settings_change

endpoint.bitdefender.agent.user_logout

endpoint.bitdefender.agent.user_logout

endpoint.bitdefender.agent.user_session_list

endpoint.bitdefender.agent.user_session_list

endpoint.bitdefender.agent.user_specific_logging

endpoint.bitdefender.agent.user_specific_logging

endpoint.bitdefender.agent.xrca

endpoint.bitdefender.agent.xrca

endpoint.bitdefender.agent.xrca_event

endpoint.bitdefender.agent.xrca_event

endpoint.bitdefender.agent.modify_value

endpoint.bitdefender.agent.modify_value

endpoint.bitdefender.gravityzone.product_modules_status

endpoint.bitdefender.gravityzone.product_modules_status