This group includes tags that start with the level cloud
. These tags identify data generated by Cloud services.
Company | Product / Service | Data tables |
---|
Alibaba cloud |
| |
Cloudflare + AWS |
| |
AWS CloudFront |
| |
AWS CloudTrail |
| |
AWS CloudWatch |
| |
AWS Config |
| |
AWS Network Firewall |
| |
AWS GuardDuty |
| |
Amazon Security Lake |
| |
AWS Security Hub |
| |
AWS Simple Queue Service (SQS) |
| |
Amazon VPC |
| |
AWS Web Application Firewall (WAF) |
| |
Microsoft Azure |
| |
Azure Activity log |
| |
Azure Active Directory |
| |
Azure Kubernetes Service |
| |
Azure API Management |
| |
Azure Application Gateway |
| |
Azure App Service |
| |
Azure Components |
| |
Azure Container Registry |
| |
Azure Cosmos DB |
| |
Azure Data Factory |
| |
Azure Event Hub |
| |
Azure Data Factory |
| |
Azure Firewall |
| |
Azure Front Door |
| |
Azure Host Pool |
| |
Azure Key Vault |
| |
Azure managed clusters |
| |
Azure Monitor Metrics |
| |
Azure x Microsoft Defender |
| |
Azure Monitor |
| |
Azure network security groups |
| |
Azure Monitor Metrics: other metrics |
| |
Azure Database for PostgreSQL |
| |
Azure Network Security |
| |
Azure Security Center |
| |
Azure x Sentinel |
| |
Azure Service Bus |
| |
Azure Site Recovery |
| |
Azure SQL Database |
| |
Azure Storage Server |
| |
Azure Traffic Manager |
| |
Azure Virtual Network |
| |
Azure Virtual Machines |
| |
Azure Virtual Machine Scale Sets |
| |
Azure VPN Gateway |
| |
Azure Diagnostics extension |
| |
Azure workflows |
| |
Box cloud content management |
|
Cloud Foundry application |
|
Cloudflare |
|
Google Cloud Platform |
| |
Google Cloud BigQuery |
| |
Google Cloud Armor |
| |
Google Cloud Audit |
| |
Google Compute Engine |
| |
Google Cloud DNS |
| |
Google Cloud GCEGuestAgent |
| |
Google Cloud IDS |
| |
Google Cloud OS Config agent |
| |
Google Cloud Platform requests |
| |
GCP Security Command Center |
| |
Google Cloud’s operations suite (formerly Stackdriver) |
| |
GCP Standard Error Messages |
| |
GCP Standard Output |
| |
GCP Syslog |
| |
GCP Threat Detection |
| |
- |
| |
Google logs |
|
Google Workspace admin logs |
| |
Google Workspace alerts |
| |
Google Workspace audit logs |
| |
Google Workspace reports |
| |
IBM Cloud Activity Tracker |
| |
IBM SoftLayer |
| |
IBM Cloud Virtual Private Cloud (VPC) |
|
Cisco Meraki |
|
Microsoft Graph |
|
Netskope cloud |
| ||
Microsoft 365 |
| ||
Microsoft 365 Azure Active Directory |
| ||
Microsoft Defender for Cloud Apps alerts |
| ||
Microsoft 365 Data Loss Prevention |
| ||
Microsoft Defender for Endpoint alerts |
| ||
Microsoft 365 Exchange |
| ||
Microsoft 365 Identity Alerts |
| ||
Microsoft 365 management |
| ||
Microsoft 365 message tracing |
| ||
Microsoft 365 OneDrive |
| ||
- |
| ||
Microsoft 365 reports |
| ||
Microsoft 365 security events |
| ||
Microsoft 365 Security & Compliance Center |
| ||
Microsoft 365 SharePoint |
| ||
Microsoft 365 SIEM agent |
| ||
Microsoft 365 Teams |
| ||
Prisma Cloud |
| ||
Rubrik cloud data management |
| ||
Snowflake |
| ||
Sophos Central |
| ||
Twistlock |
| ||
VMware Tanzu Operations Manager |
|